Collaborate Disseminate
Kara Arundel reports: … Ransomware — where threat actors use malware to block access to network systems and then demand payment to unlock it — has been ballooning in the K-12 sector over the last seven years, according to the K12 Security Informa… Continue reading School ransomware attacks are on the rise. What can districts do?
Jonathan Greig reports: A cyberattack in May gave hackers access to the personal, financial and medical information of more than 47,000 residents living in Wichita County, Texas. County officials filed breach notification documents with regulators in T… Continue reading Texas county says 47,000 had SSNs, medical treatment info leaked during May cyberattack
One cyberattack is distressing enough. But has The Eye Clinic Surgicenter been attacked by two different groups this year? Silence is not golden if patient data has already been leaked. Last week, Meow Leaks added The Eye Clinic Surgicenter in Montana… Continue reading Since June, two groups claim to have attacked The Eye Clinic Surgicenter. What do we know?
On Thursday morning, ThreeAM added Carolina Arthritis to its leak site. Some ransomware groups add a listing, post some claims and a few screencaps, and then give the entity a deadline to pay up, or they leak a bit of data and then give the entity a fi… Continue reading Carolina Arthritis hit by ThreeAm ransomware attack
On September 15, INC Ransom added OnePoint Patient Care to its leak site. The threat actors claimed to have encrypted the hospice dispensing pharmacy and pharmacy benefits management service’s files. It wasn’t long after that INC leaked all… Continue reading OnePoint Patient Care notifies almost 800,000 patients of August ransomware attack
On September 7, RansomHub added Cardiology of Virginia to its dark web leak site, claiming that about 1 TB of files had been acquired. DataBreaches assumes no payment agreement was struck as RansomHub subsequently leaked data, complete with a filelisti… Continue reading Cardiology of Virginia patient data appears to be up for sale. Has the entity issued any statement at all?
Following up on President Biden’s recent executive order and the Justice Department’s notice of proposed rulemaking, CISA has issued the following: PROPOSED SECURITY REQUIREMENTS FOR RESTRICTED TRANSACTIONS Pursuant to Exec. Order 14117, Pr… Continue reading CISA: Proposed Security Requirements for Restricted Transactions Pursuant to Exec. Order 14117
Hannah Fry reports: The personal information of more than 200,000 people in Los Angeles County was potentially exposed after a hacker used a phishing email to steal the login credentials of 53 public health employees, the county announced Friday. Detai… Continue reading Phishing attack hits L.A. County public health agency, jeopardizing 200,000-plus residents’ personal info
From a breach notification by civil law firm Santoro Whitmire in Las Vegas: Recently, after the firm permanently closed its business, we were the target of a ransomware attack. Ransomware is a computer virus that encrypts computer systems until and unl… Continue reading You permanently closed your business and then got hit with a ransomware attack. It just doesn’t seem fair, does it?
Charles Gorrivan and Brody Ford report: Snowflake Inc. plans to close its own investigation this week into a hacking campaign that ensnared as many as 165 of its customers. The cloud data and analytics company hasn’t detected any unauthorized access in… Continue reading Snowflake to Close Hacking Probe Into Attack Targeting Clients