In a notice issued yesterday, Florida Medical Clinic (“FMC”) confirmed that unauthorized individuals gained access to its computer network and used ransomware to encrypt files. FMC detected suspicious activity on January 9, 2023, and the incident was fully contained within hours. FMC states they were able to “proactively isolate the exposure.” DataBreaches has sent them…
Category: Malware
Co-Working for the Ransomware Age: How Hive Thrived
Mathew J. Schwartz reports on how Hive blossomed as a business enterprise by co-working, or incorporating smaller victims and teams from Conti. Read his report with insights provided by Yelisey Bohuslavskiy, chief research officer at New York-based threat intelligence firm Red Sense. It makes for a fascinating read.
Northeast Surgical Group notifies 15,298 patients of a HIPAA breach, but doesn’t tell them their information has been dumped.
In January, the BianLian ransomware group added an unnamed medical group to their leak site. In February, they also posted a teaser on their BreachForums account. Although neither listing named the victim, DataBreaches was able to figure out that it was the Northeast Surgical Group (“NESG”) in Michigan. DataBreaches reached out to them multiple times,…
Medusa claims responsibility for Minneapolis Public Schools’ “encryption event,” provides proof of how much data they accessed
There’s another update to the “encryption event” first disclosed by Minneapolis Public Schools (MPS) in February. As of their most recent last update, MPS had stated that they had been able to restore systems and no ransom had been paid. At that time, DataBreaches had not found any gang claiming responsibility for the breach or…
ES: Cyberattack at l’Hospital Clínic has affected laboratory, pharmacy, and emergency services (updated)
Translation: A ransomware-type computer attack at the Hospital Clínic de Barcelona affects the center’s Laboratory, Pharmacy and emergency services. […] The Clinic has reported that they have coordinated with Salut and the other hospitals in the city to attend to emergencies, medical transport and urgent codes (such as strokes or heart attacks). At the moment, patients already admitted have…
Germany and Ukraine hit two high-value ransomware targets
On 28 February 2023, the German Regional Police (Landeskriminalamt Nordrhein-Westfalen) and the Ukrainian National Police (Націона́льна полі́ція Украї́ни), with support from Europol, the Dutch Police (Politie) and the United States Federal Bureau of Investigations, targeted suspected core members of the criminal group responsible for carrying out large-scale cyberattacks with the DoppelPaymer ransomware. This ransomware appeared…