Commentaries and Analyses – Page 56

Fred Hutch failed to reveal threats of potential swatting attacks until this site revealed the threat. Should they have disclosed it themselves?

Posted on January 14, 2024 by Dissent

On December 28, DataBreaches published snippets from a chat with a threat actor (TA) who claimed to have involvement with both the Fred Hutch cyberattack and the Integris cyberattack. In the course of that exchange, the TA surprised DataBreaches by claiming that they had threatened Fred Hutch with swatting patients. From DataBreaches’ previous reporting: “So…

Fertility Test Lab Will Pay $1.25M to Settle Breach Lawsuit

Posted on January 13, 2024 by Dissent

In 2021, Quest-owned ReproSource Fertility Diagnostics disclosed a ransomware attack in August potentially affecting 350,000 patients. One month after disclosure, they were sued. Now Marianne Kolbasuk McGee reports that there is a settlement. A Massachusetts federal court preliminarily approved the proposed settlement on Wednesday. The proposed class action litigation, which consolidated two similar lawsuits against…

US School Shooter Emergency Plans Exposed in Raptor Technologies Data Leak

Posted on January 11, 2024 by Dissent

Matt Burgess reports: Thousands of emergency planning documents from US schools—including their safety procedures for active shooter emergencies—were leaked in a trove of more than 4 million records that were inadvertently made public. Last month, security researcher Jeremiah Fowler discovered 800 gigabytes of files and logs linked to school software provider Raptor Technologies. The firm…

UK CISO’s are cowing to ransomware demands more than you think, here’s why they shouldn’t pay up

Posted on January 11, 2024 by Dissent

Emma Woollacott reports: One-third of UK-based CISOs have confessed to paying ransomware groups millions of dollars in recent years in a bid to alleviate the impact of an attack, according to new research. Analysis from security firm Trellix found four-in-ten UK CISOs have managed a ransomware attack in the last five years – and in…

Follow-on extortion campaign: confirmation of some findings by Arctic Wolf

Posted on January 10, 2024August 22, 2024 by Dissent

Bill Toulas of Bleeping Computer reported on a recent Arctic Wolf Labs investigation that caught my eye. Arctic Wolf investigated two cases where victims of the Royal and Akira ransomware gangs who had paid ransoms were subsequently approached by threat actors offering to help them by hacking into the server of the ransomware gangs to…

HMG Healthcare notifies employees and residents of cyberattack

Posted on January 9, 2024 by Dissent

HMG Healthcare has posted a notice of a data breach on its website, but most people are unlikely to notice the substitute notice because of the way it has been presented. If the purpose of a substitute notice under HIPAA is to reach people the covered entity may not have sufficient or current contact information…