Commentaries and Analyses – Page 68

Attorney General James Secures $450,000 from US Radiology Specialists for failing to protect patient data

Posted on November 8, 2023 by Dissent

The following press release from the NYS Attorney General’s Office relates to an incident previously noted on DataBreaches.net. The Assurance of Discontinuance provides details on the breach not previously known to this site and serves as a reminder of the need to timely update and patch. NEW YORK – New York Attorney General Letitia James…

FBI: Ransomware Actors Continue to Gain Access through Third Parties and Legitimate System Tools

Posted on November 7, 2023 by Dissent

FBI Private Industry Notification TLP:CLEAR November 7, 2023 Summary The Federal Bureau of Investigation (FBI) is releasing this Private Industry Notification to highlight ransomware initial access trends and encourage organizations to implement the recommendations in the “Mitigations” section to reduce the likelihood and impact of ransomware incidents. Threat As of July 2023, the FBI noted…

HC3: Analyst Note: BlackSuit Ransomware

Posted on November 6, 2023 by Dissent

November 6, 2023 TLP:CLEAR Report: 202311061700 Executive Summary A relatively new ransomware group and strain known as BlackSuit, with significant similarities to the Royal ransomware family, will likely be a credible threat to the Healthcare and Public Health (HPH) sector. Discovered in early May 2023, BlackSuit’s striking parallels with Royal, the direct successor of the…

Update: Sensitive patient data leaked from TransForm ransomware incident; hospitals and centers affected

Posted on November 5, 2023 by Dissent

As predicted, Daixin has leaked the third part of the data they exfiltrated from TransForm and Canadian healthcare entities. DataBreaches reported the first leak when Daixin publicly claimed responsibility for the attack. The second leak followed two days later, and less than one day later, the third tranche dropped. As with the first two leaks,…

Summit Health has hundreds of locations. Were they victims of a cyberattack by LockBit3.0?

Posted on November 4, 2023 by Dissent

Summit Health is a for-profit, multi-specialty medical practice headquartered in Berkeley Heights, New Jersey. It describes itself as a “physician-driven, patient-centric network committed to simplifying the complexities of health care and bringing a more connected kind of care.” They have more than 2,800 providers, 13,000 employees, and over 370 locations in New Jersey, New York,…

HC3: Analyst Note: 8Base Ransomware

Posted on November 2, 2023 by Dissent

November 1, 2023 TLP:CLEAR Report: 202311011500 Executive Summary A recent attack on a U.S.-based medical facility in October 2023 highlights the potential threat of the ransomware gang, 8Base, to the Healthcare and Public Health (HPH) sector. Active since March 2022, 8Base became highly active in the summer of 2023, focusing their indiscriminate targeting on multiple…