Collaborate Disseminate
Lawrence Abrams reports: The REvil ransomware operation has likely shut down once again after an unknown person hijacked their Tor payment portal and data leak blog. The Tor sites went offline earlier today, with a threat actor affiliated with the REvi… Continue reading REvil ransomware shuts down again after Tor sites were hijacked
In July of this year, CTV News in Canada and DataBreaches.net reported on a breach involving Homewood Health in Canada. Both CTV and this site had become aware of the breach when data allegedly from Homewood showed up on a leak site called Marketo. M… Continue reading “Shoot the Messenger,” Friday edition: Homewood Health resorts to threats and a court order?
Two recent decisions by the Singapore PDPC. Breach of the Protection Obligation by ChampionTutor 14 Oct 2021 A financial penalty of $10,000 was imposed on ChampionTutor for failing to put in place reasonable security arrangements to protect personal da… Continue reading Recent decisions by the Singapore Data Protection
DALLAS, Oct. 7, 2021 /PRNewswire/ — JDC Healthcare Management LLC (“JDC”) is notifying individuals of an event that may affect the security of some personal information. While, to date, JDC has no evidence that information has been o… Continue reading JDC Healthcare discloses ransomware incident; still figuring out who needs to be notified
In August, DataBreaches.net highlighted ransomware threat actors known as Pysa who have been attacking both the medical sector and the education sector — two sectors near and dear to this site’s publisher. Today, we report on two more schoo… Continue reading Two more ransomware attacks on the education sector revealed
Nivedita Balu of Reuters reports: Amazon.com Inc’s live streaming e-sports platform Twitch said on Wednesday it was hit by a data breach, without providing further details. An anonymous hacker claimed to have leaked Twitch data, including information r… Continue reading Twitch confirms hack, reports say 125gb of data lost in privacy breach
In May, 2021, DataBreaches.net sent an email inquiry to OSF Healthcare in Illinois after seeing that threat actors known as Xing Team claimed to have attacked them and exfiltrated data. OSF Healthcare never responded to the inquiry. In June, after Xi… Continue reading IL: OSF Healthcare discloses ransomware incident
Since March, 2021, data exfiltrated from Butler County Sheriff’s Office has been dumped on the dark web and clear net, but those affected may never have known that because the threat actors named the wrong victim. Relying too much on the word of … Continue reading Threat actors sometimes name the wrong victims — so why are you just repeating their claims?
In 2020, those of us who report on ransomware attacks witnessed what some described as a “charm offensive” — spokespeople for ransomware groups granting interviews to journalists in which the threat actors tried to make themselves sou… Continue reading When the charm offensive didn’t work, threat actors just opted to be offensive
Desorden Group, who recently claimed to have successfully breached ABX Express, has contacted DataBreaches.net to report yet another logistics firm breach. This time, the claimed victim is Skynet.com.my. Skynet is a carrier company in Malaysia that p… Continue reading Another Malaysia carrier allegedly hacked and data exfiltrated — Skynet