In May, 2021, DataBreaches.net sent an email inquiry to OSF Healthcare in Illinois after seeing that threat actors known as Xing Team claimed to have attacked them and exfiltrated data. OSF Healthcare never responded to the inquiry. In June, after Xing Team started dumping what appeared to be patient data, DataBreaches.net sent OSF Healthcare a…
Category: Breach Incidents
Threat actors sometimes name the wrong victims — so why are you just repeating their claims?
Since March, 2021, data exfiltrated from Butler County Sheriff’s Office has been dumped on the dark web and clear net, but those affected may never have known that because the threat actors named the wrong victim. Relying too much on the word of criminals, researchers and compilations also misidentified the victim. Researchers and journalists should…
When the charm offensive didn’t work, threat actors just opted to be offensive
In 2020, those of us who report on ransomware attacks witnessed what some described as a “charm offensive” — spokespeople for ransomware groups granting interviews to journalists in which the threat actors tried to make themselves sound like professionals who have an ethics code and who are just trying to provide for their families. Those…
Another Malaysia carrier allegedly hacked and data exfiltrated — Skynet
Desorden Group, who recently claimed to have successfully breached ABX Express, has contacted DataBreaches.net to report yet another logistics firm breach. This time, the claimed victim is Skynet.com.my. Skynet is a carrier company in Malaysia that provides domestic and international carrier services. Desorden Group provided DataBreaches.net with proof of claim — a video taken showing…
Neiman Marcus discloses May, 2020 incident that impacted 4.6 million customers
DALLAS, Sept. 30, 2021 /PRNewswire/ — Neiman Marcus Group (“NMG” or the “Company”) recently learned that an unauthorized party obtained personal information associated with certain Neiman Marcus customers’ online accounts. NMG notified law enforcement of the issue, which occurred in May 2020, and is working closely with Mandiant, a leading cybersecurity expert, to investigate. NMG’s…
GrupoGSS data appears on the internet after what appeared to be a ransom agreement …. went nowhere?
On September 25, DataBreaches.net reported that GrupoGSS, a division of Covisian, had been the victim of a ransomware attack by Conti. In a statement to DataBreaches.net, Covisian confirmed the attack but also stated: We hereby confirm that neither GSS nor Covisian have conducted negotiations of any kind with anyone regarding the cyberattack. Their firm denial,…