Cynthia Howell reports: The Little Rock School District, a victim of a 2022 data security attack, is telling its past and present employees, student families and vendors that there is no evidence that their personal data has been “viewed, used or misused.” However, that announcement — posted recently on the 21,000-student district’s website — also…
Category: Malware
Two more school districts hit by ransomware: Pineland Schools, Uniondale Union Free School District
Two more school districts have shown up on dark web leak sites today. Pineland Schools Pineland Schools in Vineland, New Jersey, was added to LockBit’s site with some files as proof of claim. LockBit claims to have 64GB of data they will dump on April 18 (tomorrow). The screencaps provided as proof include an image…
LockBit ransomware gang appears to be targeting Macs for the first time
Michael Potuck reports: Over the last several years, LockBit has become one of the most powerful ransomware gangs. While it has focused on Windows, Linux, and virtual host machines, it looks like the group has developed its first ransomware for Macs. Discovered by MalwareHunterTeam (via Brett Callow), what seems to be the first ransomware build designed for macOS has surfaced…
Read The Manual Locker: A Private RaaS Provider
Max Kersten writes: The underground intelligence was obtained by N07_4_B07. Another day, another ransomware-as-a-service (RaaS) provider, or so it seems. We’ve observed the “Read The Manual” (RTM) Locker gang, previously known for their e-crime activities, targeting corporate environments with their ransomware, and forcing their affiliates to follow a strict ruleset. Is this yet another ransomware gang, or is…
Ongoing issues at Cornwall Community Hospital from “Cyber Incident”
On April 11, Cornwall Community Hospital (CCH) in Ottawa reported some “network Issues” and for patients to expect some delays as they worked to restore systems. The hospital’s EHR system was not affected by the attack. On April 13, CCH said they had determined that the network issues were a “cyber incident” and external experts…
A short-lived BlackCat listing suggests NCR’s customers’ networks were accessed
It’s been more than a decade since DataBreaches covered any significant data breach involving the Aloha POS system, and back then it was owned by Radiant Systems. In 2011, NCR Corporation bought Aloha POS. Things were fairly quiet since then, if you don’t count NCR’s response to a zero day RCE vulnerability that NCR somewhat…