Catalin Cimpanu reports: Customers of Tyler Technologies, one of the biggest software providers for the US state and federal government, are reporting finding suspicious logins and previously unseen remote access tools (RATs) on their networks and servers. The reports come days after Tyler Technologies admitted last week to suffering a ransomware attack. Read more on…
Category: Malware
TN: ‘Data security incident’ shuts down Montgomery County’s computer network
Chris Smith reports: Montgomery County’s government networks were taken down over the weekend during a “data security incident” that started on Friday. While several websites were accessible to the public on Sunday, they had limited functionality. Read more on Clarksville Now.
Nebraska Medicine was victim of cyber attack
Kevin Westhues reports: Nebraska Medicine confirmed Thursday night that it was the victim of a cyber attack. The attack caused a significant downtime for its information technology system, leading to many postponed appointments throughout the week. The entity issued a statement on Thursday that says, in part: Earlier this week Nebraska Medicine experienced a significant…
Fallout From The Ransomware Attack At Illinois Valley Community College Is Still Far From Over
Peter Medlin has an update on the Pysa (mespinoza) ransomware attack on Illinois Valley Community College that was first disclosed in April. The college had not paid the ransom demand, and has continued to work to recover from the attack. Medlin notes: In the months since the ransomware incident, IVCC has had to rebuild and…
Interim Report on Blackbaud Breach: 5.6 million patients and counting…
Since our first interim report, DataBreaches.net has continued to compile reports that mention patient information that was disclosed to Blackbaud and that may have been accessed or exfiltrated by ransomware threat actors in the data breach discovered in May. Despite the criminals pinky-swearing that they wouldn’t misuse the data and would destroy it all in…
More drama in the world of ransomware? Was Vard Group victimized twice?
Now what happened here? The Sodinokibi (“REvil”) ransomware operators have a new post that seems to claim that one of their victims was defrauded by a recovery company to the tune of $5.5 million. Vard Group, a Norwegian unit of shipbuilder Fincantieri SpA, was attacked in June 2020. But what happened next? It sounds like the…