More than two months after Fortra first began notifying clients that threat actors had exploited a vulnerability in GoAnywhere, many patients whose protected health information was stolen may still have no clue. In Part 1, we note entities that have already disclosed the breach. In Part 2, we will note those entities that do not…
Category: Breach Incidents
Bits ‘n Pieces (Trozos y Piezas)
Cementos Bío-Bío S.A attacked by BlackByte Cementos Bio-Bio S.A, a Chilean cement company, was added to BlackBye’s leaks site on April 9. DataBreaches found no notice of any incident on the main cbb.cl website, but the cbbexpress.cl customer portal had a notice about interruptions: “At this time we are having intermittencies with our services. If…
LockBit ransomware gang appears to be targeting Macs for the first time
Michael Potuck reports: Over the last several years, LockBit has become one of the most powerful ransomware gangs. While it has focused on Windows, Linux, and virtual host machines, it looks like the group has developed its first ransomware for Macs. Discovered by MalwareHunterTeam (via Brett Callow), what seems to be the first ransomware build designed for macOS has surfaced…
A short-lived BlackCat listing suggests NCR’s customers’ networks were accessed
It’s been more than a decade since DataBreaches covered any significant data breach involving the Aloha POS system, and back then it was owned by Radiant Systems. In 2011, NCR Corporation bought Aloha POS. Things were fairly quiet since then, if you don’t count NCR’s response to a zero day RCE vulnerability that NCR somewhat…
Retina & Vitreous of Texas notifies 35,766 patients of ransomware attack but doesn’t call it one
On April 10, Retina & Vitreous Associates of Texas issued a press release about a security incident discovered in February. They write, in part, “On February 1, 2023, Retina & Vitreous became aware of unusual activity within its network and discovered that there had been unauthorized access to the environment…… On February 15, 2023, the investigation…
NCB Management breach affected almost 500,000 former Bank of America credit card holders
NCB Management is an “accounts receivable management company.” In this case, that means collections. According to NCB’s March 24 letter, NCB discovered on February 4 that an unauthorized party gained access to their systems on February 1, 2023. They confirmed on March 8 that some information on consumers’ Bank of America past-due credit card accounts…