In April, the Royal ransomware gang added Lake Dallas Independent School District in Texas to its leak site. Quoting the district’s description of itself, the attackers commented: Lake Dallas Independent School District has a vibrant, growing student population, an excellent array of programs, a strong curriculum, and a progressive, innovative atmosphere. Seems like everything…
Category: Breach Incidents
Unwelcome guest: Trigona ransomware group claims they’ve taken up residence in Unique Imaging’s network
Unique Imaging, Inc. has three locations in Florida: Aventura, Biscayne, Miami, and Dadeland. If you were to visit their website today, you wouldn’t see any sign of anything amiss, but appearances can be deceiving. A ransomware group claims that they have been living in Unique Imaging’s network for months and helping themselves to patient data…
Medusa ransomware group starts leaking data from Crown Princess Mary Cancer Centre; threatens to leak more
Ellen Whinnet reports: A ransomware gang is claiming to have breached a Sydney cancer hospital, and is threatening to release data unless payment is made. NSW Health confirmed it was aware of the threats made against the Crown Princess Mary Cancer Centre at Westmead Hospital, and was investigating. The global ransomware gang Medusa posted on…
Persistent attackers: Eurasia Group believes it has been dealing with the same attackers since 2020
Some attackers are harder to kick out and keep out. From a notification letter to a state attorney general’s office by external counsel for Eurasia Group, a consulting firm in New York: In December 2020, Eurasia Group discovered suspicious activity within its email system. Eurasia Group immediately launched an investigation, with the assistance of third-party…
Brightline continues notifying clients of GoAnywhere incident; count continues to rise (more than 1 million)
Updated May 3: When DataBreaches checked Clop’s leak site today, the listing for Brightline was gone. Whether this means that they paid Clop to get it removed, or if its removal is just temporary remains to be seen. But out of all the health-related Fortra clients this site reported on in April, the Brightline listing…
Wichita State University restoring systems after cyber attack
Over the weekend, Wichita State University took proactive measures and disconnected several University systems to isolate an unauthorized attempt by a third party to access the University’s systems, according to a statement of the school’s website. Most of the University system access has been restored and there has been no indication that any of the…