On July 8, DataBreaches reported that Gateway Rehab in Pennsylvania had apparently become the victim of a ransomware attack by Blackbyte. DataBreaches’s report included redacted screenshots of files sensitive protected health information that had been leaked on the threat actors’ leak site. Gateway had not responded to inquiries from this site nor posted any notice on…
Category: Breach Incidents
Lake Charles Memorial Health System issues statement about cyberattack; Hive responds
LCMH never responded to DataBreaches’ emailed inquiries to them about a significant data security breach claimed by Hive, but after Hive started leaking their data and DataBreaches published a post about the attack and data leak, LCMH gave news outlet KPLC a statement. Their brief statement can be found in its entirety on KPLC. Of…
Alert (AA22-321A) #StopRansomware: Hive Ransomware
CISA has issued an alert about the Hive ransomware group. Summary Note: This joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail various ransomware variants and ransomware threat actors. These #StopRansomware advisories include recently and historically observed tactics, techniques, and procedures (TTPs) and indicators of…
Meta Fires Employees and Contractors for Improperly Accessing Users’ Accounts and Selling Them to Hackers
Daniel Kreps reports: Meta, the parent company of Facebook, has fired or disciplined dozens of employees and contractors — including Meta security guards — following an internal probe that revealed they were improperly accessing users’ accounts for reasons including bribery. The Wall Street Journal reports that, for years, the employees and contractors wrongly used Facebook’s internal mechanism for helping password-forgetting…
NY: Some internet restored after Albany schools hacked
News10 reports an update on the cyberattack that hit Albany schools in New York earlier this month: Students, faculty, and staff in the City School District of Albany who use Chromebooks to access the internet had their services restored on Monday. District systems and resources are still unavailable, though, for anyone using desktops or laptops,…
Lake Charles Memorial Health system victim of cyberattack and data leak by Hive
On October 25, Lake Charles Memorial Health System (LCMH) in Louisiana received an email that began, “Ladies and gentlemen! Attention, please! This is Hive Ransomware Team.” The remainder of the email stated that Hive had been in LCMH’s network for 12 days and had exfiltrated 270 GB of files including patient and employee data. A…