UPDATES
1
2
2
threat
UPDATES
1
ITALY
A remote access trojan( RAT) known as‘ ResolverRAT’ is being deployed against multiple organisations, with recent attacks targeting the healthcare and pharmaceutical sectors. This emerging threat is particularly alarming due to its stealthy nature, leveraging. NET‘ ResourceResolve’ events to load malicious assemblies without triggering suspicion.
The malware has been distributed through phishing campaigns in Italian, Czech, Hindi, Turkish, Portuguese and Indonesian, raising concerns that this global operation may soon expand to affect additional countries.
Dirk Schrader, Field CISO EMEA and VP of Security Research at Netwrix, said:“ Organised malware attacks targeting healthcare sector and pharma companies strongly suggest that the APT group leveraging ResolverRAT has identified how to exploit a systemic vulnerability specific to this industry.
2
US
Kidney dialysis provider DaVita has reported a ransomware attack, affecting parts of its operations and encrypting sections of its network.
In a filing to the US Securities and Exchange Commission, the company stated that contingency plans have been activated, and patient care is continuing despite the disruption.
“ Upon discovery, we activated our response protocols and implemented containment measures, including proactively isolating impacted systems,” officials explained.“ However, the incident is impacting some of our operations, and while we have implemented interim measures to allow for the restoration of certain functions, we cannot estimate the duration or extent of the disruption at this time.”
DaVita said it is still too early to determine the overall effect of the attack on the company.
“ These sectors are bound by complex regulations, ranging from intellectual property to data privacy to public health requirements. Threat actors take advantage of the urgency tied to any of these areas, tricking end-users into clicking malicious links and downloading infected files.”
2
24 WWW. INTELLIGENTCISO. COM