In May, 2024, the threat actors known as BianLian added the Center for Digestive Health in Florida to their dark web leak site. In June, they leaked what they claimed was 2.2 TB of files that they described as: A physical and medical history examination. Accounting, budget, financial data. Contract data and NDA’s. Accidents. Files…
Category: Breach Incidents
Hackers expose information for 700,000 current and former Chicago students, district says
Mila Koumpilova reports an update to the Clop attack on entities using the Cleo file transfer software. In a ransomware attack last year, Russian hackers stole private information for more than 700,000 current and former Chicago Public Schools students and put it on the dark web, district officials said Friday. According to the district, the…
Info accessed in Rainbow board data breach ‘deleted and has not been shared’
Sudbury.com reports: Data acquired by unauthorized individuals during Rainbow District School Board’s recent cyber incident “was deleted and has not been shared,” according to an update on the situation from the school board. The school board also said in the Feb. 28 statement that three weeks after the cyber incident, which meant internet was unavailable…
Medusa Unveils Another 50TB of Stolen Data from HCRG Care Group, Giving Greater Insight Into the Scope of the Breach
After the Medusa gang reportedly demanded a $2 million ransom from UK healthcare and community services provider HCRG Care Group, HCRG confirmed they had a breach and said they were investigating. But they did not confirm that patient data and employee was affected and they did not confirm that files had been encrypted. On February…
How federal rules on cybersecurity breach transparency for businesses were challenged in court in 2024
Dom DiFurio reports: In October, four companies collectively paid nearly $7 million as part of a settlement with the Securities and Exchange Commission for allegedly failing to properly inform investors of a cyberbreach affecting their companies, a liability American businesses have not previously faced. The companies were compromised in a cyberattack targeting their IT software provider in…
Cyberespionage groups or cybercriminals? UAV and C-UAV vendors and buyers are increasingly targeted
As Unmanned Aerial Vehicles (UAVs or “drones”) and Unmanned Aerial Systems (UAS) are increasingly deployed as part of military operations, there has also been an upsurge in counter-UAV (C-UAV) and counter-UAS technologies designed to detect and neutralize the threats they pose. Unsurprisingly, there has been an uptick in cyberespionage groups and cybercriminals attempting to acquire…