John Le reports: Federal authorities are investigating the ransomware attack that caused a network outage at Allergy Partners locations in the mountains. The attack happened on Feb. 23 and continued for eight days as hackers wanted a king’s ransom of $1.75 million, according to a report filed with Asheville Police Department. Meanwhile, the staff was…
Category: U.S.
Petersburg Medical Center talks about breach; says hospital will get new health records system
Angela Denning reports that Petersburg Medical Center has come out with more information about a medical records breach. They say about 200 patients were affected. The medical center sent out letters to all patients whose medical records may have been viewed by this employee. So, how did they find out about it in the first…
Hollywood’s Elite Private Schools Hacked
Gary Baum reports: Several top L.A. private schools’ digital servers have been breached in recent weeks, and law enforcement is investigating, The Hollywood Reporter has learned. In an apparent pattern, one or more hackers have published staff payroll documentation in email blasts riddled with racist, sexist and homophobic language. […] The institutions known to have been hacked…
The Accellion breach also impacted Qualys; threat actors start dumping files
As I noted yesterday on Twitter, Qualys was added to threat actor CLOP’s leak site, raising the question as to whether the firm had been an Accellion client. They had. Qualys issued a statement later yesterday. It said, in part: Qualys has confirmed that there is no impact on the Qualys production environments, codebase or…
AllyAlign notifies 76,348 members and providers of ransomware attack
AllyAlign Health (AAH), a Medicare Advantage special needs plan administrator, recently notified 76,348 members and providers of an attempted ransomware attack. But how successful were the threat actors? And what could the Virginia firm figure out and what couldn’t they figure out based on their investigation? According to AAH’s notification letter, the attack occurred on…
Ripe for extortion? Navajo Nation hospital targeted by large-scale ransomware hack
Kevin Collier has a follow-up on the Rehoboth McKinley Christian Health Care cyberattack first reported by DataBreaches.net on February 16. From Collier’s reporting, it seems that those impacted by the breach have yet to be notified. As I’ve advocated many, many times: when PII or PHI are publicly dumped by criminals, taking 60 days to…