Collaborate Disseminate
Joe Warminsky reports: Global pharmaceutical corporation Cencora reported on Tuesday that it recently discovered that intruders had stolen data from its networks. The Fortune 500 company said in a regulatory filing that data from IT systems “had been e… Continue reading Pharmaceutical giant Cencora reports cyberattack
February 27, 2024: SUMMARY Note: This joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail various ransomware variants and ransomware threat actors. These #StopRansomwar… Continue reading CISA Alert CodeAA23-353A: ALPHV BlackCat
Zack Whittaker reports that the ongoing cyberattack at Change Healthcare has been confirmed as a ransomware attack, with executives of the firm linking it to AlphV (BlackCat). Reuters was the first to report the claimed attribution to BlackCat, but un… Continue reading Yes, Change Healthcare breach was us — BlackCat
On February 16, BlackCat added loanDepot to their dark web leak site, but without any data as proof. At the time, they claimed that LoanDepot had shown up in the negotiation chat, and had offered $6 million for the data and a decryptor, but allegedly c… Continue reading loanDepot notifying 17 million customers after ransomware attack in January
Craig Schneider reports: Long Island schools saw a big increase in the number of reported computer hacks and other cyber incidents in 2023 compared to the prior year, and human error continued to be a major cause of exposing sensitive student informati… Continue reading School cyber incidents on Long Island: Reported cases rose sharply in 2023
The Zalkin Law Firm (“Zalkin”), a San Diego firm advocating for sexual abuse survivors nationwide, was sued in September after BlackCat gained access to the firm’s system and exfiltrated 523 clients’ personal information, includ… Continue reading Zalkin law firm settles suit by clients whose sex abuse details were hacked by BlackCat
Only five days after an international law enforcement effort seized LockBit’s leak sites, 34 servers, and 14,400 rogue email accounts used to support infrastructure and extortion, LockBit3.0 has reappeared with a new Tor site that looks like the … Continue reading As expected, LockBit is back already
Jennifer Hennessy and Christopher Taylor of Foley & Lardner write: In an important development for HIPAA-regulated entities looking for practical assistance in understanding, implementing, and enhancing compliance with the HIPAA Security Rule, the … Continue reading NIST Publishes Final “Cybersecurity Resource Guide” on Implementing the HIPAA Security Rule
Although there has been no arrest of LockBitSupp, the disruption of LockBit3.0 was accompanied by some arrests and indictments in various countries: United States: The U.S. Department of Justice unsealed indictments against two Russian men: Artur Sung… Continue reading Lockbit takedown accompanied by some arrests and indictments
From today’s update to the LockBit3.0 blog, now under the control of law enforcement, we read claims that law enforcement knows who and where LockBitSupp is, and that he drives a Mercedes and not a Lamborghini. Now that last bit may be enough to … Continue reading True or false, Friday law enforcement edition