UY: Thomas J. Shandy Attack Claimed by AvosLocker The firm of Thomas J. Schandy has been listed on the leak site for AvosLocker. The February 5 listing claims that the threat actors have about 100 GB of information from the firm which states that their “jurisdiction has particular emphasis on all the national ports of…
Category: Breach Incidents
The Center for Autism and Related Disorders notifies patients after vendor’s error caused HIPAA breach
The Center for Autism and Related Disorders (“CARD”) has locations throughout the U.S. On January 24, it experienced a reportable breach when “as part of a recent update to its patient billing systems, the third-party vendor responsible for generating patient invoices incorrectly made a computer error which resulted in certain caregivers receiving an invoice for…
Hackers breach Reddit to steal source code and internal data
Lawrence Abrams reports: Reddit suffered a cyberattack Sunday evening, allowing hackers to access internal business systems and steal internal documents and source code. The company says the hackers used a phishing lure targeting Reddit employees with a landing page impersonating its intranet site. This site attempted to steal employees’ credentials and two-factor authentication tokens. After…
“Now, hundreds of debts have been forgiven. Hundreds of rejections have been accepted:” Claims by hacker of Chile’s General Treasury of the Republic.
Access to Tesorería General de la República, the General Treasury of the Republic of Chile (TGR) may be up for sale on a popular hacking forum. A forum post claiming that tesorería.cl and tgr.cl had been hacked was first reported by Germán Fernández on Twitter on January 30. The post by a new forum member…
Hidalgo County Adult Probation Office hit by ransomware attack
Valerie Gonzalez reports: The Hidalgo County Adult Probation Office is recovering from a ransomware attack over the weekend. The incident happened Saturday but was resolved Monday, Hidalgo County Judge Richard F. Cortez confirmed. Read more at MyRGV.com, although there’s not much more to note other than the intriguing statement that they did not have to…
MA: DotHouse Health discloses data breach but has yet to send letters to patients
On or about December 10, AlphV (aka BlackCat) added DotHouse Health.org to their leak site, where they attempt to pressure victims into paying any ransom demands. In this case, the threat actors did not post any proof pack, but they claimed to have infiltrated 800 GB of data from the Massachusetts HIPAA-covered healthcare provider. On…