New research reveals links between Black Basta and Cactus ransomware gangs. Members from the two groups are using similar social engineering attacks, BackConnect proxy malware, and the same DNS tunneling feature found in Zloader malware. The clues point to some members migrating from defunct Black Basta to Cactus. The overlapping tactics, use of BackConnect, and other operational similarities suggest a possible rebrand or shared membership in the groups.
Quarter of Australian hospitals lack strong cyber measures
Almost 23% of Australia’s top hospitals lack adequate cybersecurity measures, according to cybersecurity firm Proofpoint. An analysis of 70 hospitals found the strongest level of
