—– A DataBreaches.net report by Dissent and Chum1ng0 —– Since 2018, threat actors known as “Pysa” (for “Protect Your System Amigo”) have used mespinoza ransomware to lock up victims’ files after exfiltrating a copy of them. In early 2020, alerts about these “big-game hunters” were published by both the FBI and CNIL . Since then,…
Category: Breach Incidents
Insurance Broker Gallagher Sued Over Ransomware Attack
Andrew G. Simpson reports: Insurance and benefits broker Arthur J. Gallagher is the target of a proposed class action lawsuit over a ransomware attack it suffered in 2020. The plaintiffs allege that Gallagher failed to follow federal and state government and industry standards to protect their personal information from hackers and failed to adequately notify…
Hacker attack on the Lazio Region. Vaccine reservations suspended, shadow ransomware
Arcangelo Ròciola reports: AGI – Unprecedented hacker attack on the IT systems of the Lazio Region. A virus has taken offline the Region’s website, that of the Regional Council and the booking portal for vaccines against Covid-19. Systems went haywire about shortly after midnight today. From what AGI learned shortly after the attack, the virus…
Suspect File updates the Blackbaud incident tally for the education sector
Courtesy of Suspect File, this update to the list of educational entities impacted by the 2020 Blackbaud ransomware incident: UPDATE (5) of 31.07.2021 (June / July 2021) Total number of people involved 7,984,697 (+5,907) In the update of 07/31/2021, 3 new Institutions affected by the Blackbaud Data Breach are added. As of 30.05 2021, the…
Cayuga Medical Center and Wisconsin Institute of Urology notifying patients of breaches
In addition to a breach reported by Renaissance, two other breaches involving protected health information were disclosed yesterday. Here’s what you might want to know about those: Cayuga Medical Center We are still first learning about some victims of the Accellion data breach that took place back in December and January when threat actors exploited…
Health insurer notifies members after third-party vendor suffers ransomware attack
It appears that a third-party vendor has quietly paid ransom to unidentified threat actors. In a press release yesterday, Renaissance Life & Health Insurance Company of America says they were notified on June 1 by their vendor, Secure Administrative Solutions LLC (“SAS”), of a ransomware incident that involved unauthorized access to its systems occurred between…