Collaborate Disseminate
On or about July 7, Karakurt threat actors added Jefferson County Health Center in Iowa to their leak site to pressure them to pay ransom demands. Or was it Jefferson County Hospital in Oklahoma that they had hit? Right below their heading claiming it… Continue reading Jefferson County Health Center notifies patients about May cyberattack
Visitors to Akira’s dark web leak site are greeted with a message: Well, you are here. It means that you’re suffering from cyber incident right now. Think of our actions as an unscheduled forced audit of your network for vulnerabilities. Ke… Continue reading Parathon by JDA eHealth Systems hit by Akira? They haven’t responded to inquiries.
Harold Brubaker reports: Computer systems at Delaware County’s Crozer Health were offline Thursday after a ransomware attack on the health system’s owner, Prospect Medical Holdings Inc., the company said. “We have experienced a ransomware attack that i… Continue reading Crozer Health’s computer systems were knocked offline Thursday by a ransomware attack
Here’s yet one more case to note about standing and how cases may get dismissed before they even really get started. This case involved Syracuse ASC, LLC. In 2021, they experienced a cyberattack and notified 24,891 patients. A copy of their notif… Continue reading The plaintiffs have standing to sue — court. No, they don’t — appeals court.
Discovery at Home provides senior home healthcare services to seniors in Florida and Texas. On July 31, they issued a website notice about a phishing incident they discovered on June 1. As they describe it, the scheme resulted in the transmittal of per… Continue reading Discovery at Home notifies patients after phishing incident
On December 22, 2022 DataBreaches added MHMR Authority of Brazos Valley to our non-public breach worksheet. Based on information at that time from Hive threat actors, it appeared that the non-profit Texas mental health and substance abuse treatment pro… Continue reading MHMR Authority of Brazos Valley provides notice of ransomware attack last November
Seen on WebsitePlanet: Cybersecurity Researcher, Jeremiah Fowler, discovered and reported to WebsitePlanet a non-password protected database that contained 680k records. Upon further investigation, it was identified that these records were related to e… Continue reading School Accreditation Organization Data Breach Exposed Sensitive Information on Students, Parents, and Teachers Online
Marco A. De Felice of SuspectFile (aka @amvinfe) reports that BankCard USA (BUSA) recently paid the Black Basta ransomware group $50,000 ransom. But if BUSA hoped to keep the breach and payment out of the public eye, they should sit down before they re… Continue reading Attacked by Black Basta, BankCard USA paid ransom.
In May, DataBreaches dutifully noted The Chattanooga Heart Institute (CHI) on our non-public worksheets. At the time, all we knew was that Karakurt threat actors had claimed to have attacked them and to have exfiltrated 158 GB of data. There was no pro… Continue reading The Chattanooga Heart Institute to notify 170,450 about March “data security incident”
Law enforcement and experienced ransomware professionals generally advise victims not to pay any ransom demands. Yet the University of Hawaiʻi Community College decided that they would pay following an attack that they first disclosed on June 13. So wh… Continue reading Hawaiʻi Community College pays ransom to attackers