Joseph Menn and Christopher Bing broke the news yesterday: The ransomware group REvil was itself hacked and forced offline this week by a multi-country operation, according to three private sector cyber experts working with the United States and one former official. …. “The FBI, in conjunction with Cyber Command, the Secret Service and like-minded countries,…
Category: Breach Incidents
44% of Healthcare and Pharmaceutical Organizations Have Experienced a Data Breach Caused By a Third Party in the Last 12 Months
SecureLink, a leader in critical access management, has released a new report titled “A Matter of Life And Death: The State of Critical Access Management in Healthcare,” revealing that third-party attacks in healthcare are on the rise and fundamentally threaten not just highly sensitive medical data, but patient care. The report, which includes data from…
Members of at least two health insurance plans notified of ransomware attack on PracticeMax (updated)
Updated March 7, 2022: PracticeMax reported this incident to the Maine Attorney General’s Office as impacting a total of 165,698 patients. Their updated notice explains that the breach began on April 17, 2021, and they became aware of technical problems on May 1, 2021. The notice also reads, in part: On October 19, 2021, while…
A massive ‘stalkerware’ leak puts the phone data of thousands at risk
Zack Whittaker reports: The private phone data of hundreds of thousands of people are at risk. Call records, text messages, photos, browsing history, precise geolocations and call recordings can all be pulled from a person’s phone because of a security issue in widely used consumer-grade spyware. But that’s about as much as we can tell you….
Student and personnel files from Manhasset Union Free School District appear on the dark web (UPDATED)
On October 7, the Manhasset Union Free School District revealed that it may have been the victim of a ransomware attack. There can no longer be any doubt that they were attacked. Over the weekend, Vice Society threat actors dumped the district’s data on their dark web leak site. Inspection of some of the files…
REvil ransomware shuts down again after Tor sites were hijacked
Lawrence Abrams reports: The REvil ransomware operation has likely shut down once again after an unknown person hijacked their Tor payment portal and data leak blog. The Tor sites went offline earlier today, with a threat actor affiliated with the REvil operation posting to the XSS hacking forum that someone hijacked the gang’s domains. Read…