Collaborate Disseminate
On February 16, BlackCat added loanDepot to their dark web leak site, but without any data as proof. At the time, they claimed that LoanDepot had shown up in the negotiation chat, and had offered $6 million for the data and a decryptor, but allegedly c… Continue reading loanDepot notifying 17 million customers after ransomware attack in January
The Zalkin Law Firm (“Zalkin”), a San Diego firm advocating for sexual abuse survivors nationwide, was sued in September after BlackCat gained access to the firm’s system and exfiltrated 523 clients’ personal information, includ… Continue reading Zalkin law firm settles suit by clients whose sex abuse details were hacked by BlackCat
Grace Lutheran Foundation, which does business as Grace Lutheran Communities in Wisconsin, offers a variety of services including rehabilitation services, assisted living, skilled nursing, independent living, adult day services, and childcare. On Febru… Continue reading Grace Lutheran Communities attacked by BlackCat; employee and resident data acquired
On April 30, DataBreaches reported an alleged data breach involving TorchByte (formerly known as Tic Hosting Solutions). At the time, DataBreaches had been unable to reach the firm, and the Romanian data protection authority informed DataBreaches that … Continue reading Update to the Tic Hosting Solutions data incident
In August 2023, Prince George’s County Public Schools disclosed a cyberattack. At the time, they reported that “an estimated 4,500 user accounts out of 180,000 were impacted, primarily staff accounts. The school system is still assessing the full… Continue reading Updating: Prince George’s County Public Schools breach affected almost 100,000
In December, INTEGRIS Health disclosed a cyberattack in November in which threat actors contacted patients directly to extort them when INTEGRIS wouldn’t pay their demands. DataBreaches subsequently reported additional details. On February 6, INT… Continue reading Update on INTEGRIS Health data breach: incident response criticized by patients
Safiyah Marhnouj reports: The insurance provider for members of the Public Service Health Care Plan who are posted abroad or travelling says it recently detected a “cybersecurity incident” involving its systems, but hasn’t determined … Continue reading Insurance provider for public servants abroad detects ‘cybersecurity incident’
RAT Malware Allowed Cybercriminals to Surreptitiously Connect to Victims’ Computers to Steal Data and Engage in Other Malicious Activities Without Victims’ Knowledge The Justice Department announced today that, as part of an international law enforceme… Continue reading Warzone RAT Sales and Support Actors in Malta and Nigeria Charged in U.S. Federal Indictments
Anastasia Sentsova and Jon DiMaggio have written about the latest drama in the ransomware world: LockBitSupp was banned from XSS.is, and as is their policy, he was therefore also banned on Exploit.in. Banned in the two well-known Russian-language forum… Continue reading LockBitSupp banned as a “ripper:” drama on the Russian-language forums
Chainalysis got everyone’s attention with their new report. They write, in part: 2023 marks a major comeback for ransomware, with record-breaking payments and a substantial increase in the scope and complexity of attacks — a significant reversal … Continue reading Ransomware Payments Exceed $1 Billion in 2023, Hitting Record High After 2022 Decline