Collaborate Disseminate
From the so-there-they-are! dept Out of sight, out of mind? It seems like ages ago that DataBreaches last reported on the Trigona ransomware group, but it was actually in September 2023. After that, DataBreaches lost track of them, and after a few mont… Continue reading Trigona Affiliates Deploy Custom Exfiltration Tool to Streamline Data Theft
Harry Taylor reports: Data from 500,000 people who volunteered their health information to the UK Biobank has been breached and offered for sale online in China. Technology Minister Ian Murray said that information of all half a million members had bee… Continue reading Half a million Britons’ medical data were offered for sale on Alibaba in major UK Biobank breach
Pierluigi Paganini reports: A leaked database from RAMP gives us a rare look behind the curtain. It shows how cybercrime works when it becomes structured, commercial, and repeatable. Instead of random hackers acting alone, RAMP functioned like a busine… Continue reading RAMP Uncovered: Anatomy of Russia’s Ransomware Marketplace
DysruptionHub reports: Mile Bluff Medical Center in Mauston, Wisconsin, said Tuesday that a security event involving data encryption disrupted some phone and computer functions, prompting clinical teams to shift to downtime procedures while patient car… Continue reading Mile Bluff Medical Center says security incident that involved data encryption disrupted phone, computer systems
Just when I thought I might be done with work for the day, DataBreaches received an email from “Internet Yiff Machine” (IYM), the hacktivist responsible for hacking P3 Global Intel in what has been called the “Blue Leaks 2.0” b… Continue reading NOT for Sale! BlueLeaks 2.0 Hacktivist decides not to sell dataset with sensitive data
Troutman Pepper Locke writes: In Part One of this series, we discussed how wellness products sit at the intersection of Food and Drug Administration (FDA), Health Insurance Portability and Accountability Act (HIPAA), Federal Trade Commission (FTC), and… Continue reading Outside FDA, Inside the Crosshairs: Cybersecurity Risks for General Wellness and Fitness Products
Overview and Background This is the first of what will likely be several updates to this site’s exclusive reporting on the “BlueLeaks 2.0” incident that exposed anonymous and sensitive tips by and about students on a platform that pro… Continue reading BlueLeaks 2.0: 7,300+ Schools, Referral Systems Reported, and a Breach Navigate360 Still Hasn’t Publicly Confirmed
Ann-Marie Corvin reports: Cheap tech just keeps on exposing NATO warships. In the latest example, a journalist was able to send a Bluetooth tracker to a Dutch frigate. Just Vervaart, working for regional broadcaster Omroep Gelderland, hid the $5 Blueto… Continue reading Dutch warship compromised with $5 tracker and a postcard
Phil Muncaster reports: Next.js developer Vercel has confirmed a cyber-incident conducted by a “highly sophisticated” attacker which may have resulted in threat actors getting hold of sensitive internal data. The US firm, which provides developer tool… Continue reading Vercel Confirms Cyber Incident After Sophisticated Attacker Exploits Third‑Party Tool
And then there were three…. A third man has pleaded guilty to conspiring with two other cybersecurity professionals and BlackCat to use BlackCat’s ransomware and negotiation platform to target U.S. firms. Ryan Goldberg of Georgia and Kevin … Continue reading Florida Man Working as a Ransomware Negotiator Pleads Guilty to Conspiracy to Deploy Ransomware and Extort U.S. Victims