On June 18, Gramercy Surgery Center in New York discovered it might have been the victim of a cyberattack attack. It had been, and DataBreaches recently reported that the threat actor(s) known as Everest Team leaked more than 460 GB of files they claimed to have exfiltrated. Neither Gramercy Surgery Center (GSM) nor Everest responded…
Author: Dissent
Kootenai Health sends notifications for 464,088 people after February attack
More than five months after discovering an attack that disrupted access to some of its IT systems, Kootenai Health is sending notification letters to 464,088 patients, employees, and employees’ dependents. Kootenai Health describes itself as providing a comprehensive range of medical services to patients in north Idaho, eastern Washington, Montana and the Inland Northwest at…
Leader of International Malvertising and Ransomware Schemes Extradited from Poland to Face Cybercrime Charges
Justice Department Unseals Charges Against Two Additional International Cybercriminals WASHINGTON – A Belarussian and Ukrainian dual-national charged in both the District of New Jersey and Eastern District of Virginia with leading international computer hacking and wire fraud schemes made his initial appearance in Newark, New Jersey, today after being extradited from Poland. As alleged in…
International Investigation Leads to Shutdown of RADAR-DISPOSSESSOR Ransomware Group (1)
The following takedown and operation relate, in small part, to a leak DataBreaches reported to the FBI and a hosting company. DataBreaches did not name the victim entities or RADAR-DISPOSSESSOR in that blog post to prevent others from finding or misusing the victims’ data. The dispossessor.com website now displays a seizure notice, where the word…
Trump campaign reckons with alleged Iranian hack
Shelby Talcott and Ben Smith report: Donald Trump’s campaign says it has been hacked, with some internal communications stolen and leaked to Politico over the last month. The Trump campaign blamed Iran for the hack, and referred to a Microsoft report published Friday that hackers tied to the Iranian government had tried to break into the account…
Surgery Center of Mid Florida notifies patients of February ransomware attack
On or about February 21, Surgery Center of Mid Florida (“SCOMF”) experienced a ransomware attack. No group has publicly claimed responsibility for the attack, but it originated with an attack on their now-former IT vendor. The attack on the unnamed vendor gave the attackers access to SCOMF. In August, SCOMF notified regulators, explaining, in part:…