Seems to be a lot of Conti-related analyses this week, as well as the $10 million reward offered by the government for information leadings to Conti’s leaders. From Intel471: Software developers often depend on the collective knowledge of the industry to build their products. Whether it’s through reverse engineering, poaching talent, or straight up cloning…
Category: Breach Incidents
Conti and Hive ransomware operations: Leveraging victim chats for insights
Kendall McKay and colleagues Paul Eubanks and Jaime Filson of Talos issued a report this week with some interesting insights. EXECUTIVE SUMMARY Through open-source research, we obtained and analyzed over four months of chat logs — more than 40 separate conversations — between Conti and Hive ransomware operators and their victims. The findings in this…
Update: U.S. v. Robert Purbeck aka “Lifelock”
Long-time readers may recall that in 2017 and 2018, DataBreaches.net reported on hacks of two medical practices by someone calling himself “Lifelock.” DataBreaches’ past reporting on him can be found in this July, 2017 post (see comments under the post), in two 2018 posts, and then a post in response to a press release from…
Another school district notifies parent of Illuminate breach
Natalie Chuck reports that another district in Colorado has sent letters to parents about the breach at Illuminate Education that impacted more than 820,000 students in New York City as well as 24 other districts and 18 charter schools in NY: Someone, somewhere knows details about thousands of students in southern Colorado after a data…
Breast Cancer Support Organization Leaks Data Despite Multiple Notifications?
Update: After posting this, tweeting this story, and getting retweets on it, it appears that as of late yesterday, the bucket was finally secured. Thanks to SafeyDetectives who kept re-checking the bucket and to everyone who tried to call attention to this to get the data locked down. DataBreaches did not get any acknowledgement or…
Excellus Health Plan Settles Data Breach Suit With Policyholders
Samantha Hawkins reports: Excellus Health Plan Inc. will settle a data breach lawsuit with a certified class over a 2013 hacking incident that compromised the personal data of approximately 10 million policyholders. Matthew Fero, who filed the suit against Excellus and several associated healthcare companies in 2015, claims that customers’ personal identifying information, Social Security…