Collaborate Disseminate
“Oh for f*** sake,” a February 25th message on Signal to me began. RaidForums had been seized, I was told. But had it been? [Note: this article does not link to RaidForums’ site as it is may still be a phishing page.] A WHOIS lookup … Continue reading Why won’t law enforcement answer questions about RaidForums? Or have they just winked?
First they thought their victim hacked them back. Then they appeared to be trolled by a “negotiator” who wasn’t. I don’t know if the Brazilian threat actors who call themselves LAPSUS felt like moving to Australia after a bad da… Continue reading LAPSUS and the Terrible, Horrible, No Good, Very Bad Ransom Day1
Andrew Macfarlane reports: iTCo, which is based in Rotorua, says it was the subject of a ransomware cyberattack in early February. Those responsible are claiming to have stolen more than 4 gigabytes of data. Note: this is not the same firm that Hive th… Continue reading NZ technology company hacked, data stolen
A notification letter template that showed up on the California Attorney General’s site this week is dated “February 19, 2021.” I assume the 2021 is a typo based on the rest of the letter. The letter from Orthopedic Associates of Haw… Continue reading One year later, Minimally Invasive Surgery of Hawaii notifies patients of ransomware incident
Brett Dickerson reports: Victims of past sexual assault who had their DNA collected in a rape kit by the Oklahoma City Police Department now face yet more uncertainty because of a data breach. Rape kits are used to collect DNA evidence by law enforceme… Continue reading OKC Police rape kit info exposed in data breach of DNA contractor
DataBreaches.net does not report on most potential class action lawsuits because many of them will not survive motions to dismiss. This case, however, is a bit more interesting to me because it involves sensitive mental health data, ransomware, leaked… Continue reading QRS Data Breach Exposed Psych Care Consultants Patient Information – Class Action Allegations
The National Math and Science Initiative (NMSI) in Texas describes itself as a non-profit organization whose mission is to improve U.S. student performance in the subjects of science, technology, engineering, and math. According to their notification l… Continue reading National Math and Science Initiative notifies more than 190,000 of data security incident
In January, DataBreaches.net noted a report to the Massachusetts Attorney General’s Office that involved Comprehensive Health Services (CHS), a business associate providing occupational health services to clients’ employees. The breach was … Continue reading FL: Comprehensive Health Services discloses breach first detected this past September
Covered entities in the medical sector continue to be an attractive target for ransomware groups, and earlier this week, Avos Locker added Jax Spine and Pain Centers (“JAX”) to their leak site. JAX has seven locations in North Florida and… Continue reading FL: Ransomware group claims to have stolen data on 260,000 patients from Jax Spine and Pain Centers; victim remains silent
ClassActions.org reports that CareSouth Carolina has been hit with a potential class action lawsuit. The caption is Mixon v. CareSouth Carolina, Inc. § 4:22-CV-00269 You can access a copy of the complaint at https://www.classaction.org/media/mixon-v-ca… Continue reading CareSouth Carolina hit with proposed class action lawsuit