On June 10, the Everest Group added a listing for Avantic Medical Lab to its leak site, accompanied by a one-week countdown clock and four screenshots containing patient information as proof of the claims. When the attack first occurred, and whether Everest had contacted Avantic before June 10, is unknown to DataBreaches, but on June…
Category: Hack
Kentfield Hospital victim of cyberattack by World Leaks, patient data involved
While some of us were considering whether Hunters International was in the process of re-branding as World Leaks or not, World Leaks was busy adding a hospital to its leak site. Kentfield Hospital in California is a critical care hospital that specializes in treating patients with complex medical needs who require an extended period of…
Louis Vuitton Korea suffers cyberattack as customer data leaked
Bloomberg reports: Louis Vuitton Korea suffered a cyberattack that compromised some customer data, the second time in recent months that hackers have targeted the world’s largest luxury group. The Korean unit of LVMH’s flagship brand said an “unauthorised third party” accessed its systems on June 8 and some customer information was leaked. No financial data…
Cyberattacks Disrupt Iran’s Bread Distribution, Payments Remain Frozen
IranWire reports: Iran’s subsidized bread distribution system remains crippled two weeks after cyberattacks targeted major banks, leaving bakers unable to access payments and forcing authorities to reimpose restrictions on bread sales. The disruption affects the nationwide Nanino electronic payment system, which is connected to Sepah Bank – the institution responsible for processing all wheat-related transactions…
Senator Chides FBI for Weak Advice on Mobile Security
Brian Krebs reports: Agents with the Federal Bureau of Investigation (FBI) briefed Capitol Hill staff recently on hardening the security of their mobile devices, after a contacts list stolen from the personal phone of the White House Chief of Staff Susie Wiles was reportedly used to fuel a series of text messages and phone calls impersonating her to U.S….
Cl0p cybercrime gang’s data exfiltration tool found vulnerable to RCE attacks
Connor Jones reports: Security experts have uncovered a hole in Cl0p’s data exfiltration tool that could potentially leave the cybercrime group vulnerable to attack. The vulnerability in the Python-based software, which was used in the 2023-2024 MOVEit mass data raids, was discovered by Italian researcher Lorenzo N and published by the Computer Incident Response Center Luxembourg (CIRCL)….