Behind the Headlines

As BreachedForums becomes the conduit for selling data affecting 590million individuals, the FBI continues to chip away at the cybercriminal iceberg and releases 7000 LockBit decryption keys.

This month Cybersixgill has observed a variety of fresh attacks across a number of industries. We dive into the major news stories and explore the detail behind the headlines.

Over the past month, much has changed in the cybersecurity industry. A wave of significant supply chain attacks have disrupted operations for many, and we have seen over 70million customer records leaked on the dark web. The hits dont stop coming either - shortly after a series of law enforcement activities inconvenienced 2 large ransomware gangs, a new one is born.

Over the past month, international law enforcement agencies have achieved a trilogy of successes, disrupting LockBit, CrimeMarket and Warzone Rat operations. In stark contrast however, we have observed a new ransomware group, Trisec Vision come to the fore and Rhysida Gang stoop to new lows by targeting a leading pediatric hospital.

The health sector has suffered a huge blow this month as France announced a cyberattack on two major healthcare organizations. The breach has compromised the data of 33million people - amounting to almost half of the French population. Learn more about this and other news stories in our February edition of Behind the Headlines.

Despite the break for the holidays, threat actors have been busy and their targets varied. In this month's Behind the Headlines, we dive deeper into attacks on 23andMe, the healthcare sector and suppliers to the Department of Defense.

This December, Christmas comes early for threat actors as a fresh wave of attacks trapped 30,000 containers in an Australian port. We also provide the detail behind the ransomware gang who reported its own victim to the authorities for failing to disclose an attack.

In this month's edition of Behind The Headlines, we take a look at what caused the biggest DDoS attack ever! We also report on the network outage that disrupted Kwik Trip operations, the ServiceNow misconfiguration that has allegedly exposed large amounts of data and the Zero-day Citrix vulnerability recently exploited.

Discover what’s Behind The Headlines of October's biggest cybersecurity news stories. We disclose what happened in the weeks following the cyber attack on MGM & Caesars Palace, the latest Microsoft proof-of-concept circulating on the dark web and the malware that is bypassing multi-factor authentication security. We also dive deeper into the latest cyber attack in the logistics sector.

Discover what’s Behind The Headlines of September’s biggest cybersecurity news stories. Learn about the threat actor offering data allegedly harvested from Chinese government sources and why the closure of AnonFiles has the cybercriminal underworld up in arms. We also discuss the data leaked from a leading education app on the dark web.

In our August edition of Behind The Headlines, we uncover more details regarding the new WormGPT crimeware, the latest cyberattack that shut down emergency rooms in U.S. hospitals and share our observations from a cybercriminal underground forum discussing how to abuse the 'Havoc' framework.

Discover more about the stolen ChatGPT credentials that are flooding dark web markets, the latest Microsoft attack and the new malware that is stealing data from browsers and password managers.

In our June edition of Behind The Headlines, we take a look at what was behind the MOVEit zero-day exploitation affecting companies in the UK and abroad and reveal more about the Russian underground forum seeking to spread malicious AI tools.

In our May review of the industry headlines, learn more about the cyber threats facing AT&T, the unprotected U.S. Military-related email server and how BatLoader malware has been abusing Google Ads to lure its victims.