HHS HC3: Beware of Lapsus$, Email Marketing-Related Threats
Healthcare Info Security
Marianne Kolbasuk McGee
Federal authorities are warning the healthcare and public health sector of potential threats involving Lapsus$ - including those related to the extortion group's recent hack of identity management vendor Okta - and also of possible phishing attacks arising out of a recent breach experienced by email marketing services provider Mailchimp.
The Department of Health and Human Services' Health Sector Cybersecurity Coordination Center, or HC3, in two separate advisories issued on April 7 warns of attack threats to the sector by Lapsus$ and also by potential phishing campaigns leveraged by "legitimate" email marketing platforms, such as Mailchimp.
HC3 in its threat brief warns...