Collaborate Disseminate
Reporting this via a Google translation of an article originally published in French. Valéry Rieß-Marchive reports: The brand provides its affiliates with Linux software allowing them to maintain complete control over the data stolen from their victims… Continue reading Ransomware: Hunters International decentralizes storage
In December 2023, DataBreaches added Rockford Gastroenterology Associates (“RGA”) to a list of possible ransomware victims after seeing a listing for them on the leak site for threat actors known as RA World. However, it wasn’t until … Continue reading Rockford Gastroenterology Associates notifies 147,253 patients of December 2023 cyberattack
Marco A. De Felice (aka @amvinfe) of SuspectFile and DataBreaches have often shared information with each other about threat actors or incidents, including what may appear to be second attacks or maybe just a re-listing of a previous attack. He has rec… Continue reading Ransomware Group Cooperation: A Growing Challenge in the Fight Against Cybercrime
A press release from Corvus Insurance has some statistics worth mulling over: Corvus Insurance, a wholly owned subsidiary of The Travelers Companies, Inc., today released its Q3 2024 Cyber Threat Report, The Ransomware Ecosystem is Increasingly Distri… Continue reading Attackers Targeting VPNs Account for 28.7 Percent of Ransomware Incidents in Q3 According to Corvus Insurance Cyber Threat Report
Adi Bleih reports: The Akira ransomware group has been active since March 2023, targeting diverse industries across North America, the UK, and Australia. Operating as a Ransomware-as-a-Service (RaaS) model, Akira employs a double-extortion strategy by … Continue reading Hibernation is Over? Akira Ransomware: Published Over 30 New Victims on their DLS
Anna Isaac reports: “The software we use is older than me, and some of the hardware is older than my dad,” says Siddharth*. He is one of a team fighting a daily battle to sustain ancient IT infrastructure at Thames Water. Sometimes the defences are bre… Continue reading Thames Water’s IT ‘falling apart’ and is hit by cyber-attacks, sources claim
Add this to the list of things I missed last week. Nathan Salminen and Ryan Campbell write: Last week, the National Institute of Standards and Technology (NIST) released a “quick-start guide” to facilitate due diligence assessments from a cyber supply… Continue reading NIST publishes guide on due diligence for cyber supply chain risk management
Anne Neuberger Deputy National Security Advisor of the United States New York, New York November 8, 2024 AS DELIVERED Thank you, Mr. President. Good morning. My name is Anne Neuberger and since 2021, I have had the privilege of coordinating the United … Continue reading Remarks at a UN Security Council Briefing on Ransomware Attacks against Hospitals and Other Healthcare Facilities and Services
In March 2024, LockBit3.0 added Redwood Coast Regional Center (RCRC) to its leak site. On May 3, RCRC notified HHS of the March 6 incident, reporting that 500 patients had been affected. RCRC only recently updated that report to indicate that 24,937 p… Continue reading Still in the dark: A “500 marker” is updated, but too many still aren’t. Is HHS doing anything about this??
If you say you always do right, then you should do right, right? Ouch. Over on infosec.exchange, @Jayeltee recently wrote: Professional Probation Services ( www.ppsfamily.com ) exposes almost 500,000 US probationers private data publicly, SSNs included… Continue reading Professional Probation Services leak exposed almost half a million probationers’ personal info