Subsequently, the victims were blackmailed over email with making stolen information publicly available on a leak site operated by the Clop Ransomware gang unless a ransom was paid. Now, the hackers opted for an extortion campaign exploiting zero-day vulnerabilities in the legacy FTA software to install DEWMODE web shell on victim networks and withdrawing sensitive data. The breaches first began in mid-December 2020, when UNC2546 started exploiting a SQL injection vulnerability in Accellion’s FTA. NSW Health has been working with NSW Police and Cyber Security NSW and to date, and so far, there is no evidence any of the information has been misused.Ī NSW Health spokesperson said, “The privacy of individuals is of the utmost importance to NSW Health, and we are making impacted people aware of the attack so that they can take appropriate precautions and access our support services.”īack in February, Transport for NSW, which is the main transport and roads agency in New South Wales, Australia, and the state’s ministry of health, was also entrapped in the attack. ![]() Medical records in public hospitals were not affected and the software involved is no longer in use by NSW Health.ĭifferent types of information, including identity information and in some cases, health-related personal information, were included in the attack. The system was widely used to share and store files by organizations worldwide, including NSW Health.Īccording to an update released by the NSW, On Wednesday, New South Wales Health has confirmed being the target of a cyberattack involving the Accellion file transfer system.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |