HC3: Analyst Note TLP: White Report: 202208241200 Executive Summary Karakurt ransomware group, also known as the Karakurt Team and Karakurt Lair, is a relatively new cybercrime group, with researchers reporting its first emergence in late 2021. Karakurt actors claim to steal data and then threaten to auction it off or release it to the public…
Author: Dissent
Et tu, Last Pass?
Received today: Dear valued customer, We are writing to inform you that we recently detected some unusual activity within portions of the LastPass development environment. We have determined that an unauthorized party gained access to portions of the LastPass development environment through a single compromised developer account and took portions of source code and some…
NH: Northeast Rehabilitation Hospital Network updates their 2021 breach notification
In November 2021, the Northeast Rehabilitation Hospital Network in New Hampshire notified HHS of a breach. At the time, they indicated 501 patients had been affected, which is usually just a marker for “we know it’s more than 500, but we don’t know how many just yet.” The incident was coded as a hacking/IT incident…
Major Indonesia tollroad operator hacked by DESORDEN (Updated)
On August 23, DESORDEN alerted DataBreaches to another one of their attacks. This one involved the PT JASAMARGA TOLLROAD OPERATOR, Indonesia’s largest major tollway and highway operator. According to DESORDEN’s statement: This data breach involved 252 GB of data, coding and documents, across 5 of their servers. The data breach involves their users, customers, employees,…
Hive starts dumping patient and employee data from Baton Rouge General Health System
On July 15, DataBreaches reported that Baton Rouge General Medical Center in Louisiana had been the victim of a significant ransomware attack. Our report attributed the attack to Hive although Hive was publicly denying responsibility at the time and claiming DataBreaches had “incorrect info.” Our information was correct. On Tuesday, Hive added the health center…
MA: Whitman-Hanson school officials investigating data security breach
Adria Watson reports that Whitman-Hanson is investigating a data security incident that occurred at the end of July. School resumes on August 31 for the district, but orientation and other functions have already begun. Read more at Boston Globe (behind paywall). DataBreaches was unable to find any statement on the district’s website at this point and…