LockBit 3.0 continues to be the leading ransomware gang according to Palo Alto Networks' Unit 42, despite law enforcement actions six months ago. Analyzing the first half of 2024, Unit 42 observed 1,762 posts on ransomware gangs' leak sites, a slight increase from 2023. The six most active groups accounted for over half of the infections, with LockBit 3.0 leading at 325 victims. The Play gang moved to second place with 155 victims, and the newcomer 8base ranked third with 119 victims. Other notable gangs included Akira, BlackBasta, and Medusa. Law enforcement disruptions have temporarily hindered certain groups like ALPHV/BlackCat and CLOP, but the criminal ecosystem quickly adapts, with new groups and rebrands emerging, leading to a resilient and evolving ransomware threat landscape.

Six ransomware gangs behind over 50% of 2024 attacks The Register

The Federal Trade Commission (FTC) has updated its Health Breach Notification Rule (HBNR), effective July 29, 2024, to address the evolving landscape of health data privacy. The revised rule now explicitly includes health apps and connected devices, such as wearables, under its purview and defines a breach to include unauthorized disclosures of personal health information to third-party platforms like Facebook and Google. Key changes involve new definitions of “PHR identifiable health information,” expanded requirements for breach notifications, and specific timeframes for informing both consumers and the FTC in case of data security breaches. The rule emphasizes the importance of protecting personal health data amid increasing data collection and usage for marketing purposes.

FTC revised Health Breach Notification Rule now in effect PharmaLive

CrowdStrike's president, Michael Sentonas, accepted the "Most Epic Fail" award at the Def Con hacking conference for a software update that led to a global IT outage. The Pwnie Awards highlight both achievements and failures in the security community. Sentonas acknowledged the award while emphasizing its significance as a lesson for the company. The faulty update caused Windows machines to fail globally, impacting entities such as airlines and prompting Microsoft to reconsider its policies on kernel access. CrowdStrike attributed the issue to a test software bug and committed to improving their testing processes and implementing staged updates to prevent recurrence.

CrowdStrike accepted a ‘Most Epic Fail’ award at Def Con hacking conference The Verge

In the past year, prominent institutions including hospitals, tech companies, and major Las Vegas resorts suffered from ransomware attacks, where critical data is encrypted by hackers and held for ransom. The September attack on MGM Resorts cost over $100 million, highlighting the growing threat posed by the cybercrime group "Scattered Spider," a collective of young hackers from the U.S., U.K., and Canada. They have allied with Russia’s notorious BlackCat hackers, combining social engineering and sophisticated malware attacks. The rise of these cybercriminals, often younger than 25, challenges security with their adept manipulation of Western cultural norms and online spaces, driving a surge in ransomware incidents.

Cybersecurity investigators worry ransomware attacks may worsen as young, Western hackers work with Russians CBS News