Jason Hill reports: First observed in October 2022, HardBit is a ransomware threat that targets organizations to extort cryptocurrency payments for the decryption of their data. Seemingly improving upon their initial release, HardBit version 2.0 was introduced toward the end of November 2022, with samples seen throughout the end of 2022 and into 2023. Like…
Author: Dissent
Protenus releases its 2023 Breach Barometer for Health Data Breaches
Protenus LLC has released its seventh annual Breach Barometer report. Unlike other analyses that seem to rely solely on reports to the U.S. Department of Health and Human Services, the Breach Barometer uses a broader lens and includes reports from non-HIPAA entities that involved medical data or health insurance information on employees or patients. There…
MN: KFI Engineers pays $300k ransom, Black Basta ransomware group thanks…
Marco A. De Felice (@amvinfe) managed to shoulder-surf ransom negotiations between Black Basta and KFI Engineers (“KFI”) in Minnesota. He reports that the victims wound up paying $300,000.00, half of what the attackers initially demanded. KFI counts schools and hospitals among its clients, but as an engineering firm, one would not expect them to have…
Hackers Start Selling Data Center Logins for Some of World’s Largest Corporations
Jordan Robertson reports: In an episode that underscores the vulnerability of global computer networks, hackers got ahold of login credentials for data centers in Asia used by some of the world’s biggest businesses, a potential bonanza for spying or sabotage, according to a cybersecurity research firm. The previously unreported data caches involve emails and passwords…
Defending Data Breach Claims in Ireland
Colin Monaghan, Anthony Strogen, Deirdre Munnelly, and Rosemary Lynch of Mason Hayes & Curran LLP write: European Union, Ireland February 17 2023 The recent significant Circuit Court decision in the case of Gary Cunniam v Parcel Connect Ltd t/a Fastway Couriers Ireland & Others now provides useful guidance on the view of the Irish Courts in matters related…
Ca: Sobeys admits to data breach in fall 2022, alerts customers and employees
Hafsa Arif provides an update on the ransomware attack on Sobeys, a Canadian supermarket chain, by Black Basta last year: The Maritime-based Empire Co. – parent company of Sobeys – acknowledges customers and employees past and present are receiving letters saying their personal information may have been compromised. Read more at CTV.