Abdulrahman H. Alamri and Lexie Mooney of Dragos write: The third quarter (July – September) of 2024 brought transformative shifts to the ransomware landscape, emphasizing its dynamic and continuously evolving nature. The ransomware threat ecosystem remained highly active in the third quarter, fueled by new groups, rebranding of existing entities, expansion of initial access broker…
Category: Breach Incidents
Rydox Cybercrime Marketplace Shut Down and Three Administrators Arrested
The Justice Department today announced the seizure of Rydox, an illicit website and marketplace dedicated to selling stolen personal information, access devices, and other tools for carrying out cybercrime and fraud, and the arrest of Rydox administrators and Kosovo nationals Ardit Kutleshi, 26, and Jetmir Kutleshi, 28. Both defendants were arrested earlier today in Kosovo by…
Japanese publisher paid BlackSuit $3 million, but BlackSuit leaked their data anyway – reports
Kyodo News reports that Japanese publishing firm Kadokawa Corporation paid Black Suit $2.98 million in cryptocurrency after a ransomware attack in June. But looking at BlackSuit’s leak site, it appears BlackSuit leaked their data anyway. A screenshot of some of the negotiations in mid-June published by Kyodo News reveals that BlackSuit was demanding $8.25 million…
Global Police Action Against DDoS Attackers: Operation PowerOFF
A press release from Dutch Politie: Starting this week, law enforcement agencies from fifteen different countries, together with Europol, are once again taking large-scale action against DDoS-for-hire services. In Operation PowerOFF, three arrests were made internationally, 27 websites were taken offline and data from three servers was secured. The Dutch police, under the authority of…
HHS OCR settles charges that Inmediata Health Group exposed 1.6 million patients’ PHI online
The following announcement by HHS OCR stems from an accidental exposure of protected health information online that continued for several years. Inmediata’s incident resulted in a class action lawsuit that was settled for $1.1 million in 2022, and a settlement with 33 states for $1.14 million in 2023. HHS seems to be the first to…
Watsonville Community Hospital still dealing with November cyberattack
Watsonville Community Hospital in California is continuing to work through what they refer to as a cyberattack on November 29. The hospital’s network has been offline since then with staff reverting to “downtime” procedures using paper. The hospital has been able to continue to provide emergency, inpatient, and outpatient care but alerts patients that there…