James Coker reports: The number of victims named on ransomware leak sites reached “unprecedented levels” in the four months from March to June 2023, according to Secureworks’ 2023 State of the Threat report. At current levels, 2023 is on course to be the biggest year on record for victim naming on so-called ‘name and shame’ sites since…
Category: Breach Incidents
Rock County Health Department in Wisconsin victim of cyberattack
Officials in Rock County, Wisconsin have confirmed to Recorded Future News that they experienced a cyberattack on September 29: “Since some systems are not yet fully operational, this may temporarily impact certain County operations. However, the public should experience minimal service disruption at this time. We are investigating the full nature and scope of this…
HC3: Analyst Note: LokiBot Malware
Report: 202309291200 Executive Summary Active since 2015 and among the most prevalent and persistent strains of malware families since 2018, LokiBot has matured over time to target multi-sector industries. Despite its apolitical targeting of critical infrastructure, the malware’s adverse effect on the Healthcare and Public Health (HPH) sector shows its reach. In March 2020, a…
Aretis Health LLC notifies patients of 50 entities about MOVEit breach
Add Aretis Health LLC to the list of entities affected by the MOVEit breach. Aretis performs billing functions for NorthStar Anesthesia, and made notification to patients and HHS on behalf of the following entities: AmSol Physicians of Elkin, NC, PLLC Anesthesia Company of Houston, PLLC Anesthesia Resources Management Solutions, Inc Coronado Anesthesia, PLLC Digestive Health…
Fauquier County Public Schools listed by LockBit (1)
Well, this is a bit different. Did Fauquier County Public Schools in Virginia contribute to its own attack by noting employees could use free online SMS MFA websites for folks who don’t want to use a personal phone number for 2FA/MFA? It’s something to think about. h/t, Brett Callow Update of October 20: Fauquier County…
And yet more victims in the U.S. medical sector
Earlier today, DataBreaches provided a small update on U.S. medical entities recently attacked or leaked by AlphV (BlackCat). Other groups also continue to attack health care entities. Here are a few: Monti added Cascade Family Dental to their leak site on October 1 with a note: About 130 Gb was downloaded. At 12 October whole…