Collaborate Disseminate
Daryna Antoniuk reports: A Moscow resident has been accused of trying to extort money from the notorious Conti ransomware group by posing as an officer of Russia’s Federal Security Service (FSB), according to local media reports. Russian outlet RBC, ci… Continue reading Extorting the Extorters? Moscow man accused of posing as FSB officer to extort Conti ransomware gang
Or Hadar reports: Clalit Health Services, the largest health maintenance organization in Israel, said it is investigating a suspected cyberattack after an Iranian-linked hacking group claimed it breached the insurer’s systems and published thousands of… Continue reading Clalit probes suspected cyberattack after Iranian-linked hackers leak patient files
Charmian Aw, Paul Otto, and Ciara O’Leary of Hogan Lovells write: Recent large‑scale data breaches across major sectors in Korea, including across the telecommunications, retail, and finance sector, have prompted swift and coordinated response fr… Continue reading South Korea considers updates to data and cyber laws
Jonathan Greig reports: The United Arab Emirates said it stopped a ransomware attack this weekend that allegedly targeted the country’s digital infrastructure. The country’s Cyber Security Council published a statement on Saturday that said they “succe… Continue reading UAE claims it stopped ‘terrorist’ ransomware attack
Eduard Kovacs reports that the Wynn Resorts listing on the ShinyHunters leak site, previously noted on this site, has been removed, suggesting that the resort paid an extortion demand to get data deleted. “The unauthorized third party has stated that t… Continue reading Wynn Resorts Confirms Data Breach After Hackers Remove It From Leak Site
Jai Vijayan reports: In 2025, cybercriminals needed less time to move from break-in to lateral movement across a network than it takes to watch a typical sitcom. An analysis by CrowdStrike of threat activity last year found attackers took just 29 minut… Continue reading Attackers Can Own Your Network in a Matter of Minutes
Greater Pittsburgh Orthopaedic Associates (GPOA) recently began notifying patients of a breach that occurred on or about August 10, 2025. Although their notification letter to patients does not indicate that this was an incident involving encryption, … Continue reading Greater Pittsburgh Orthopaedic Associates disclosed a 2025 breach, but was there also one in 2024?
Anna Ribeiro reports: A joint investigation by the Symantec and Carbon Black Threat Hunter teams details evidence that operators linked to the Lazarus hacker group are deploying Medusa ransomware in ongoing extortion campaigns targeting the U.S. health… Continue reading Lazarus hackers adopt Medusa ransomware for extortion campaigns, targeting healthcare and nonprofits
Connor Jones reports: Two South Korean teenagers were this week charged with breaching Seoul’s public bike service, Ttareungyi. Identified only as Persons A and B, the pair, now of high school age, allegedly carried out the attack on Ttareungyi i… Continue reading Korean cops charge teens over bike hire breach that exposed data on 4.62M riders
Daniel Verlaan reports: The cybercriminal group Shinyhunters is responsible for hacking Odido. On the dark web, Odido is being pressured to pay the ransom—over a million euros. “This is your final warning,” the hackers write. “Otherwi… Continue reading Hackers threaten to leak 8 million people’s stolen data if Dutch telecom Odido won’t pay ransom