The Google Threat Intelligence Group (GTIG) reported that persistent hacker group UNC3944 is resurfacing following a lull in activity after 2024 law enforcement actions. Beginning with SIM swap telecommunication attacks, the group has progressed to ransomware and data theft across multiple sectors. Recent focus areas include retail companies in the UK, with potentially linked DragonForce ransomware. UNC3944 utilizes sophisticated social engineering and targets large enterprises in English-speaking countries. GTIG suggests implementing robust identity verification protocols and monitoring IT infrastructure as defense strategies.
Serviceaide Leak Exposes Records of 500,000 Catholic Health Patients
A misconfigured database at IT provider Serviceaide exposed sensitive health and personal data of around 500,000 patients linked to New York-based Catholic Health. The information
