Collaborate Disseminate
In December, INTEGRIS Health disclosed a cyberattack in November in which threat actors contacted patients directly to extort them when INTEGRIS wouldn’t pay their demands. DataBreaches subsequently reported additional details. On February 6, INT… Continue reading Update on INTEGRIS Health data breach: incident response criticized by patients
Safiyah Marhnouj reports: The insurance provider for members of the Public Service Health Care Plan who are posted abroad or travelling says it recently detected a “cybersecurity incident” involving its systems, but hasn’t determined … Continue reading Insurance provider for public servants abroad detects ‘cybersecurity incident’
RAT Malware Allowed Cybercriminals to Surreptitiously Connect to Victims’ Computers to Steal Data and Engage in Other Malicious Activities Without Victims’ Knowledge The Justice Department announced today that, as part of an international law enforceme… Continue reading Warzone RAT Sales and Support Actors in Malta and Nigeria Charged in U.S. Federal Indictments
Anastasia Sentsova and Jon DiMaggio have written about the latest drama in the ransomware world: LockBitSupp was banned from XSS.is, and as is their policy, he was therefore also banned on Exploit.in. Banned in the two well-known Russian-language forum… Continue reading LockBitSupp banned as a “ripper:” drama on the Russian-language forums
Chainalysis got everyone’s attention with their new report. They write, in part: 2023 marks a major comeback for ransomware, with record-breaking payments and a substantial increase in the scope and complexity of attacks — a significant reversal … Continue reading Ransomware Payments Exceed $1 Billion in 2023, Hitting Record High After 2022 Decline
Bleeping Computer reports that Verizon has notified the Maine Attorney General’s Office of an insider data breach affecting 63,206 employees. According to their sample notice of what was sent to those affected, an employee gained unauthorized acc… Continue reading Verizon insider data breach affects over 63,000 employees
In April 2023, DataBreaches reported on an alleged incident involving TIC Hosting in Romania. No one from TIC Hosting ever responded to inquiries from this site, and inquiries to the data protection regulator for the country indicated that TIC Hosting… Continue reading Two hosting companies in Romania had what appear to be unrelated breaches. Did either one ever issue a public notice?
Today, the U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR), announced a settlement with Montefiore Medical Center, a non-profit hospital system based in New York City for several potential violations of the Health Insu… Continue reading HHS’ Office for Civil Rights Settles Malicious Insider Cybersecurity Investigation for $4.75 Million
Bill Toulas reports: Lurie Children’s Hospital in Chicago was forced to take IT systems offline after a cyberattack, disrupting normal operations and delaying medical care in some instances. Lurie Children’s is a Chicago-based pediatric acu… Continue reading Lurie Children’s Hospital took systems offline after cyberattack
On January 24, DataBreaches was contacted by a spokesperson for AlphV (“BlackCat”) to see if this site would be interested in reporting on a breach involving BrightStar Care (“BrightStar”). BrightStar had been added to their dar… Continue reading Was BrightStar Care attacked by two different groups — or was there only one breach?