Jessica Lyons Hardcastle reports: IN BRIEF The BlackCat ransomware gang, said to be the first-known ransomware group to successfully break into networks with Rust-written malware, has attacked at least 60 organizations globally as of March, according to the FBI. BlackCat, also known as ALPHV, is a relatively new group of cybercriminals that operates a Windows ransomware-as-a-service….
Author: Dissent
Silent no more: Exposing a campaign that intimidated researchers and journalists
On April 20, DataBreaches.net reported that a threat actor contacted this site to say that a researcher, @ido_cohen2, had been scared off the internet after the threat actor’s colleague(s) used a fake Emergency Data Request (EDR) to obtain the researcher’s account information from Twitter. DataBreaches could see that @ido_cohen2’s Twitter account had been deleted and…
NH: Center for Life Management breach impacted mental health clients
From their notice: The Mental Health Center of Greater Manchester (“MHCGM”) is providing notice of a recent data security event that occurred at a third-party community partner MHCGM had used for data storage, Center for Life Management (“CLM”), that may impact the privacy of certain information relating to MHCGM patients or those who were assessed…
Illinois Gastroenterology Group is providing notification of breach first discovered last October
From their notification: Illinois Gastroenterology Group, PLLC (“IGG”) is providing notice of a recent incident that may affect the security of certain individuals’ information. On October 22, 2021, IGG discovered unusual activity within its computer network. IGG immediately launched an investigation, with the assistance of third-party cybersecurity specialists, to determine the nature and scope of the…
Illuminate Education breach that affected NYC schools spreads to other districts
Benjamin Freed reports: A school district in Coventry, Connecticut, notified families of its students this week that students’ data may have been swept up in a breach of one of its vendors earlier this year. The breach-notification letter, dated Tuesday, stated that data belonging to the roughly 1,700 students enrolled in Coventry Public Schools may have…
Scott County, Iowa discloses data security incident
Seen on the county’s website, dated April 22, 2022: Notice of Data Privacy Event Scott County, Iowa (“Scott County”) is providing notice of a data privacy event. To date, we have no evidence of actual or attempted misuse of information as a result of this incident. In an abundance of caution, we are notifying potentially…