On November 8, 2020, in a report called “Without Undue Delay,” DataBreaches.net noted that Maze threat actors had a listing on their dedicated leak site for “Abington Reproductive Medicine.” The proof of claim that they posted, though, was not from Abington Reproductive, leaving us confused as to whether Abington Reproductive had really been a victim…
Category: Breach Incidents
NC: Update to Allergy Partners ransomware incident
Back in February, there were media reports that Allergy Partners in North Carolina had been impacted by a ransomware attack on February 23. The threat actors, who were not identified, reportedly demanded $1.75 million ransom. The medical practice was able to restore services in 8 days and noted that they had not paid any ransom….
UT: Astro Team threat actors dump patient-related files allegedly from Eduro Healthcare
Eduro Healthcare is a Salt Lake City, Utah based company providing transitional care, skilled nursing and rehabilitation services, and assisted living. Eduro provides an email address to use for contact. Sadly, it does not work. Nor do they seem to respond to contact form messages. Or emails to their executives. On April 7, a relatively…
How did Pompompurin hack Troia’s Twitter? Here’s how…
For a while yesterday afternoon, Vinny Troia of NightLion Security and DataViper.io appeared to lose control of tweets in his @VinnyTroia account. After a number of tweets made it clear that @Pompompur_in was able to tweet from the account at will, Troia tweeted: I am officially impressed and confused. There is no way someone hacked…
Cyberinsurance giant AXA hit by ransomware attack after saying it would stop covering ransom payments
Graham Cluley sets the stage nicely: Ouch. One week after the French branch of cyberinsurance giant AXA said that it would no longer be writing policies to cover ransomware payments, the company’s operations in Thailand, Malaysia, Hong Kong, and the Phillippines have reportedly been hit… by a ransomware attack. Read more on GrahamCluley.com. Consistent with their…
De: Darkside threat actors attempted to extort Möbelstadt Sommerlad
Möbelstadt Sommerlad is a retail furniture store in Germany. This week, its managing director, Frank Sommerlad, disclosed that they had been the victim of a ransomware attack and extortion attempt. Marc Schäfer reports Sommerlad’s statement (machine translation): “We got away with it with a black eye,” says Frank Sommerlad, managing director of the R. Sommerlad GmbH…