The U.S. Department of the Treasury has issued an advisory for companies that help negotiate ransomware payments. A footnote to the advisory notes that it is “explanatory only and does not have the force of law. It does not modify statutory authorities, Executive Orders, or regulations. It is not intended to be, nor should it…
Category: Breach Incidents
VOXX International notifies employees and dependents enrolled in their health plan of ransomware attack
The following press release was issued September 28 by VOXX. If you or a family member were employed by them years ago, they may not have your current address to notify you of this incident: Today, VOXX International Corporation (“VOXX”), a leading manufacturer and distributor of automotive, consumer and biometrics technologies, announced that it has…
Recover Our Youth notifies clients and guardians of data security incident
Recover Our Youth has posted a notice of a data security incident that does not specifically say there was a ransom demand involving exfiltrated data, but it sounds like they may have paid some ransom to get copies of data destroyed. Recover Our Youth offers residential treatment programs and group homes for behaviorally and emotionally…
These hackers have spent months hiding out in company networks undetected
Danny Palmer reports: A cyber-espionage campaign is using new malware to infiltrate targets around the world including organisations in media, finance, construction and engineering. Detailed by cybersecurity company Symantec, the attacks against organisations in the US, Japan, Taiwan and China are being conduced with the aim of stealing information and have been linked to an espionage…
SunCrypt ransomware group swears off medical entities, sets sights on cybersecurity firms
When the SunCrypt ransomware group opened a leak site where they listed victims who had not paid their ransom demands, they attracted public attention and demonstrated their ability to use the media to their advantage. BleepingComputer reported that SunCrypt operators had reached out to them to introduce themselves as part of the Maze cartel. Days…
Houston-area health organization says patients targeted in phishing incident
Amanda Cochran reports: Legacy Community Health announced Tuesday that some of its patients were victims of an email phishing incident. The organization said it had mailed letters to affected patients. In a news release Legacy did not disclose how many people at its 15 Houston-area locations were affected by the phishing incident, Read more on…