Attacks on the medical sector continue. Fred Hutchinson Cancer Center This week, the group known as Hunters International claimed responsibility for an attack on the Fred Hutchinson Cancer Center in Washington. Yesterday, they dumped data from an attack that allegedly included the exfiltration of 533.1 GB of files. Inspection of the tranche suggests that the…
Category: Breach Incidents
Update: Fred Hutch Cancer Center attack claimed by Hunters International
On December 8, DataBreaches reported that Fred Hutchinson Cancer Center had been the victim of a ransomware attack and that the then-unnamed threat actors were trying to extort patients directly. Today we learned that the threat actors are Hunters International, who listed the incident on their leak site. As of publication, they have not leaked…
Neurology Center of Nevada allegedly attacked by Qlin
Cardiovascular Consultants in Arizona is not the only U.S. medical entity the ransomware gang known as Qlin has hit. On December 4, Qlin added the Neurology Center of Nevada (NCN) to their leak site. They also provided screenshots as proof of claims. Some of those screenshots revealed personal or protected health information. In addition to…
Covenant Care patient and employee data being leaked by ransomware group
In November, Hunters International claimed that they had attacked Covenant Care. Since that time, they have been leaking what appears to be more and more patients’ protected health information (PHI) and employees’ personal information. Covenant Care operates services providing skilled nursing, residential care, therapy services, and home health care at 29 locations in California and…
Petersen Health Care allegedly a victim of a cyberattack, but not much is known at this point
On November 21, the Cactus ransomware gang added Petersen Health Care to its leak site. The listing has been updated since then. As proof of claims, Cactus leaked several screenshots of identity documents like passports. They did not indicate whether these were employee documents or patient-related documents, although it would be more likely if they…
Disgruntled Cloud Engineer Sentenced to Two Years in Prison for Intentionally Damaging His Former Employer’s Computer Network After He Was Fired
Miklos Daniel Brody Retaliated Against His Former Employer, a Bank, by Damaging the Bank’s Cloud System and Stealing Valuable Computer Code SAN FRANCISCO – Miklos Daniel Brody was sentenced to 24 months in prison today for a network intrusion and for making false statements to a government agency, announced United States Attorney Ismail J. Ramsey…