Adrian Martinez-De la Cruz reports that Crown Point Community School Corp. Superintendent Todd Terrill provided an update on the ransomware attack last November that cost the district about $1 million to resolve. The superintendent said the breach occurred after an employee fell for a phishing attack. The district decided to pay the attackers, and “a payment…
Category: Breach Incidents
Freestyle Must Defend Lawsuit Following Data Breach, Judge Rules
Skye Witley reports: Internet commerce services vendor Freestyle Solutions Inc. must face a trimmed-down lawsuit alleging it misled customers about its cybersecurity practices before hackers gained access to its network, a federal New Jersey court ruled. Freestyle succeeded in dismissing most of the claims, including negligence, but will have to defend issues surrounding its contract language, Judge Susan…
Visiting Physician’s Network in Texas silent about ransomware attack and incident response
One of the newer ransomware groups to open a leak site is “ThreeAM.” Bleeping Computer recently reported that the ThreeAM malware is written in Rust, and on at least one occasion, researchers discovered that when LockBit failed, ThreeAM (aka 3AM) was successfully deployed. Symantec has more details on the malware and the group’s methods. ThreeAM…
More victims of MOVEit breach are revealed: Nuance discloses for covered entities (UPDATE 1)
Add yet one more business associate to those affected by the Clop attack on Progress Software MOVEiT. Nuance has disclosed that it was affected by the May attacks. Although no number was revealed, the Microsoft-owned technology firm stated it was disclosing on behalf of: Atrium Health, the Charlotte-based health care system giant. Catawba Valley Medical…
Cyberattack on a Breton municipality: private data released
The following is a Google translation of a post originally published in French by Europe1 with AVP: The town of Betton (Ille-et-Vilaine), close to Rennes, was the victim of a cyberattack by hackers who disseminated personal data due to the municipality’s refusal to pay a “ransom”, according to corroborating sources. The “ransomware” attack was committed…
“I’m Not Pro-Russia and I’m Not a Terrorist!” —- InfraGard and Airbus Hacker “USDoD” Unveils His New Campaigns
The first time DataBreaches remembers hearing about the man who calls himself “USDoD” was when he posted a sales listing for member data from InfraGard. He had not only managed to acquire data on 80,000 members of an organization dedicated to protecting critical infrastructure, but his revelation of his method exposed some embarrassingly inept security…