As many people suspected, Omni Hotels & Resorts was the target of a ransomware attack in March. Omni first described the incident as a chain-wide “outage” due to IT issues. By April 1, guests were losing patience with the “outage.” Bleeping Computer noted guests complaining online claiming that they had to send text messages to…
Category: Malware
Group Health Cooperative of South Central Wisconsin notifies 533,809 members of ransomware attack
Group Health Cooperative of South Central Wisconsin (GHC-SCW) is a non-profit, member-owned health plan providing services to more than 80,000 members in Wisconsin. This week, they provided reports to HHS and the Maine Attorney General’s Office about a breach they previously disclosed in February. On January 25, GHC-SCW posted an announcement on its website that…
More Woes for Change Healthcare and Patients
Four months after law enforcement took down AlphV’s leak site and disrupted their operations, AlphV has not recovered. The damage from law enforcement in December was one factor. Then, in March, a self-described affiliate claimed that AlphV had gotten a $22 million payment from Change Healthcare OPTUM but had taken the money, suspended the affiliate’s…
Florida Department of Juvenile Justice computer network hacked
Vivienne Serret reports: Hackers broke into the computer network of the Florida Department of Juvenile Justice in Tallahassee, which runs the state’s juvenile detention centers and programs to steer troubled kids away from crime. It led to a continuing shutdown of the digital backbone the agency uses to manage cases statewide. The department took offline…
Ca: Hacked hospitals sending 326K letters to patients in Windsor, elsewhere
Taylor Campbell reports: Hundreds of thousands of patients, including many in Windsor-Essex, whose personal information was posted to the dark web following a cyberattack last fall will soon receive letters from impacted hospitals. “One patient is clearly too many,” said Windsor Regional Hospital CEO David Musyj. He called criminal cyberattacks “disgusting acts, particularly when aimed…
CISA Alert: Reported Supply Chain Compromise Affecting XZ Utils Data Compression Library, CVE-2024-3094
CISA Alert of March 29, 2024: CISA and the open source community are responding to reports of malicious code being embedded in XZ Utils versions 5.6.0 and 5.6.1. This activity was assigned CVE-2024-3094. XZ Utils is data compression software and may be present in Linux distributions. The malicious code may allow unauthorized access to affected systems….