Alexander Martin reports: Veteran cybercriminals involved in ransomware attacks are increasingly shying away from large ransomware-as-a-service (RaaS) platforms following a spate of law enforcement disruption operations, as well as the AlphV/BlackCat gang’s high-profile exit scam, according to officials and industry experts. Organized online crime groups are attempting to reduce their dependence on RaaS services by developing…
Category: Breach Incidents
Acadian Ambulance hit by ransomware attack; Daixin claims info on 10 million patients stolen
A new listing on Daixin Team’s leak site suggested serious problems for Acadian Ambulance. Acadian Ambulance offers several health-related services, including emergency medical transportation, non-emergency transportation, at-home health care, air services, and medical education. It has locations in Louisiana, Mississippi, Tennessee, and Texas. Acadian has been in business since 1971, and at this point, employees…
MNGI Digestive Health joins ranks of “late-notifiers,” finally notifying more than 767,000 patients of breach last summer
This seems to be the month in which many people affected by healthcare breaches in the summer of 2023 are first being notified individually (see, for example, reports on Southcoast Medical and Florida Community Health Centers). Here’s a third one: MNGI Digestive Health was the victim of a cyberattack on August 20, 2023. They reportedly discovered the breach…
Cyberattack on prescription service MediSecure affects 13 million Australians
Angus Dalton reports: Almost 13 million Australians had personal and health-related data stolen in the MediSecure cyberattack earlier this year, making the mass hack one of the largest ever. The Melbourne-based online prescription service company announced it was the victim of a ransomware data breach in May. A week later, a hacker claiming to possess…
Senate demands answers from AT&T about breach
In what might be described as the regulatory equivalent of being called to the principal’s office, AT&T has been sent a demand letter by Senators about its breach. The letter, signed by Senators Richard Blumenthal and Josh Hawley, the Chair and Ranking Member of the Subcommittee on Privacy, Technology, and the Law poses some very…
Car dealer software slinger CDK Global said to have paid $25M ransom after cyberattack
Matthew Connaster reports: CDK Global reportedly paid a $25 million ransom in Bitcoin after its servers were knocked offline by crippling ransomware. Last week, CDK restored services to car dealerships across the US after a two-week outage caused by a “cyber incident” that looked a lot like a ransomware infection. The shutdown of CDK’s software platform caused…