It’s gotten impossible to keep up with all the attacks, but here are some in the news today: North American food importer Atalanta revealed that employee information was involved in a ransomware attack. Their statement. Media coverage. Hellmann Worldwide Logistics in Germany was also hit by an attack that has impaired operations. Their statement and…
Category: Breach Incidents
Snatch ransomware team adds health insurer victim to their leak site
In April, CareFirst BlueCross Blue Shield posted a notice on its website concerning a ransomware attack in January. The health plan’s announcement reports that the preliminary assessments suggested that: the attack was limited to CHPDC. Early analysis also indicates that members of other CareFirst BlueCross BlueShield companies, the Federal Employees Program (FEP) and Federal…
Quest’s ReproSource faces patient lawsuit over data breach impacting 350K patients
Jessica Davis reports: One month after notifying 350,000 patients of a potential theft of their protected health information, ReproSource Fertility Diagnostics has been sued by a patient over alleged security failings. ReproSource is a clinical laboratory for fertility specialists and a subsidiary of Quest Diagnostics. First disclosed Oct. 8, an attacker hacked into the ReproSource network in…
DNA Diagnostics Center notifying more than 2 million people who used a national genetic testing service
People who had their personal information collected by a national genetic testing organization between 2004 and 2012 may have never known that their information was acquired by DNA Diagnostics Center (DDC) in Ohio in 2012. They may find out now, though, as DDC fell prey to a cyberattack in May and data was exfiltrated over…
Yanluowang ransomware operation matures with experienced affiliates
Ionut Ilascu reports: An affiliate of the recently discovered Yanluowang ransomware operation is focusing its attacks on U.S. organizations in the financial sector using BazarLoader malware in the reconnaissance stage. Based on observed tactics, techniques, and procedures, the threat actor is experienced with ransomware-as-a-service (RaaS) operations and may be linked with the Fivehands group. Read more on…
Daily Mail claims to have located REvil threat actor wanted by FBI for ‘using ransomware to fleece millions of dollars’ from Americans
The Daily Mail is not a news outlet that I would normally turn to for breaking news about tracking down a Russian cybercriminal, but that is what they claim to have done. Will Stewart reports: One of the FBI’s most wanted men linked to ransomware gang REvil is living freely in a Siberian city with…