—– A DataBreaches.net report by Dissent and Chum1ng0 —– Since 2018, threat actors known as “Pysa” (for “Protect Your System Amigo”) have used mespinoza ransomware to lock up victims’ files after exfiltrating a copy of them. In early 2020, alerts about these “big-game hunters” were published by both the FBI and CNIL . Since then,…
Category: Health Data
Hacker attack on the Lazio Region. Vaccine reservations suspended, shadow ransomware
Arcangelo Ròciola reports: AGI – Unprecedented hacker attack on the IT systems of the Lazio Region. A virus has taken offline the Region’s website, that of the Regional Council and the booking portal for vaccines against Covid-19. Systems went haywire about shortly after midnight today. From what AGI learned shortly after the attack, the virus…
Cayuga Medical Center and Wisconsin Institute of Urology notifying patients of breaches
In addition to a breach reported by Renaissance, two other breaches involving protected health information were disclosed yesterday. Here’s what you might want to know about those: Cayuga Medical Center We are still first learning about some victims of the Accellion data breach that took place back in December and January when threat actors exploited…
Za: Blood service hit by cyberattack
Hanno Labuschagne reports: The Western Cape Blood Service (WCBS) has confirmed its information systems have been hit by a cyberattack. The non-profit regional health organisation collects blood from voluntary blood donors in the Western Cape and provides safe blood products and services to the community. WCBS said a cyberattack incident was being investigated by contracted…
NC: Sandhills Center remains silent after threat actors claim to have hacked them and exfiltrated 634 GB of their files
Update of September 4: Sandhills subsequently issued a press release that indicates that they could not confirm that the data came from them. See the follow-up report here. Original post: Sandhills Center in North Carolina manages public mental health, intellectual/developmental disabilities and substance use disorder services for the citizens of Anson, Guilford, Harnett, Hoke, Lee,…
Follow-up: Woman Who Stole and Sold Protected Health Information Sentenced to 2 ½ Years in Prison
There was a follow-up last week to a case DataBreaches.net has reported on several times, beginning in December, 2020 when Demetrius Cervantes, 46, of McKinney, and Amanda Lowry, 40, of Sherman, Texas pleaded guilty to conspiracy to obtain protected health information from a protected computer. A third conspirator, Lydia Henslee, faced additional charges and subsequently…