This week in security news in review, we have reporting on the Avaddon ransomware gang closing down, Google releasing a new framework about supply chain attack prevention, and a new malware that prevents you from visiting piracy sites. These and other stories in this week’s edition of the cyber news you need to know. 

In the early morning of May 14th this year, security staff attached to the National Cyber Security Centre in Ireland noticed suspicious activity within IT networks connected to the country's Health Service Executive, the HSE. Hours later, IT systems in dozens of hospitals, clinics, and health providers -- all serving the country's population of nearly five million people -- had been shut down with what turned out to be a devastating Conti ransomware attack. 

This week we have good news and bad news. On the one hand, a COO was caught and charged with potentially attacking a rival medical institution. A stolen data marketplace was shut down and bugs were found (all around). However, there has also been an increase in high-profile cyber-attacks. Keep reading to get this week’s top cybernews.

Geography, price, and whether the healthcare provider is in their insurance network or not are often the main factors that lead consumers to choose a medical professional. Lately, however, the cybersecurity posture of the organization has started to take on a more important role when it comes to choosing care. 

This week was a doozy. Several large-scale organizations have experienced some form of cyberattack. Cloud vulnerabilities and malicious apps, masquerading as well-known services, have also taken up space in official app stores. Keep reading for a summary of this week’s top news!

Introduction

In the past month, Morphisec has investigated the origin of several increasingly prevalent infostealers. These include Redline, Taurus, Tesla, and Amadey.

As part of our research, we identified pay-per-click (PPC) ads in Google’s search results that lead  to downloads of malicious AnyDesk, Dropbox and Telegram packages wrapped as ISO images.

Welcome to your weekly roundup of cybersecurity news. In the current edition, you’ll find information about a new campaign by the threat group behind the SolarWinds supply chain attack, Belgian authorities closing a campaign they think originated in China, and information on a new cybersecurity directive for pipeline operators. 

Read on for the news!

This week’s news roundup is all about data. Kicking things off is a recently announced breach at Mercari, predictions for “data poisoning” becoming a big attack vector, and the possibility of a national data breach disclosure law. 

Read on for the news.

With remote care, connected devices, and more efficient use of data digitizing healthcare delivery, cybersecurity has never been more vital for providers. Despite the benefits to patient care, however, there are some major weak spots that still remain for providers.

With healthcare under continuous attack from threat actors, not only will new vulnerabilities emerge, but existing cybersecurity weaknesses are also set to become more critical as providers leverage digital technology more frequently. 

This week in Security News in Review, you’ll find plans from the U.S. government on disrupting threat actor networks, more action from the DarkSide gang, and FIN7 masquerading as a security analysis firm.