The Lorenz ransomware group has added AmerisourceBergen/MWI Animal Health to their leak site with what teasingly appears to be a lot of data, except there is no key to unlock the leaked files. Those who want the key will have to contact Lorenz and buy the key. Lorenz did provide a file list as a…
Author: Dissent
Hidalgo County Adult Probation Office hit by ransomware attack
Valerie Gonzalez reports: The Hidalgo County Adult Probation Office is recovering from a ransomware attack over the weekend. The incident happened Saturday but was resolved Monday, Hidalgo County Judge Richard F. Cortez confirmed. Read more at MyRGV.com, although there’s not much more to note other than the intriguing statement that they did not have to…
MA: DotHouse Health discloses data breach but has yet to send letters to patients
On or about December 10, AlphV (aka BlackCat) added DotHouse Health.org to their leak site, where they attempt to pressure victims into paying any ransom demands. In this case, the threat actors did not post any proof pack, but they claimed to have infiltrated 800 GB of data from the Massachusetts HIPAA-covered healthcare provider. On…
Hackers hit Vesuvius, UK engineering company shuts down affected systems
Graham Cluley writes: Vesuvius, the London Stock Exchange-listed molten metal flow engineering company, says it has been hit by a cyber attack. This morning, Vesuvius issued an alert that it was “currently managing a cyber incident.” Read more at GrahamCluley.com.
Russian hackers using new Graphiron information stealer in Ukraine
Bill Toulas reports: The Russian hacking group known as ‘Nodaria’ (UAC-0056) is using a new information-stealing malware called ‘Graphiron’ to steal data from Ukrainian organizations. The Go-based malware can harvest a wide range of information, including account credentials, system, and app data. The malware will also capture screenshots and exfiltrate files from compromised machines. Symantec’s…
Ransomware attack may have caused IT breach that shut all four Cork MTU campuses
Liz Dunphy reports: Munster Technological University (MTU) is working with gardaí and the National Cyber Security Centre to establish if a major IT breach that led to the closure of its four Cork campuses is linked to an international ransomware attack on hundreds of organisations. MTU’s four Cork campuses will remain closed today and an update is…