On June 18, Gramercy Surgery Center in New York discovered it might have been the victim of a cyberattack attack. It had been, and DataBreaches recently reported that the threat actor(s) known as Everest Team leaked more than 460 GB of files they claimed to have exfiltrated. Neither Gramercy Surgery Center (GSM) nor Everest responded…
Category: Hack
Gramercy Surgery Center hacked; data leaked on dark web (1)
Gramercy Surgery Center (“Gramercy”) is an ambulatory surgery center with locations in Manhattan and Queens, New York. On or about July 15, the threat actor(s) known as Everest Team added Gramercy to its leak site. Everest claimed to have acquired more than 460 GB of files but offered only images of two old files as…
ADT hacked; firm says “limited customer data” involved
It is always a bit awkward when threat actors reveal a breach before the victim releases their version of events. In this case, home safety giant ADT notified the SEC about a breach after data from it was already being leaked on a hacking forum. On July 31, a forum user with a high positive…
Russian spies hacked UK government systems earlier this year, stole data and emails
Alexander Martin reports: Cyber spies working for Russia’s foreign intelligence service stole internal emails and data on individuals from the British government earlier this year, according to an official description of the incident obtained by Recorded Future News. The breach of the Home Office’s systems has not previously been reported. It followed the Russian hackers…
Six U.S. hospital breach reports from July; some have flown under the media radar (1)
Although DataBreaches does not report on all incidents involving U.S. healthcare entities, a log is kept to calculate statistics for the annual Breach Barometer report produced by Protenus, Inc. For the month of July, DataBreaches noted the following six U.S. hospitals disclosed breaches or were claimed as victims by threat actors. Some of these incidents…
Ring, Ring, it’s the FCC Calling- TracFone to Pay $16M to Settle FCC Investigation
Liisa M. Thomas, Tracy Chau, and Kathryn Smith of SheppardMullin write: TracFone, the pre-paid phone company, recently settled with the FCC over allegations that the company failed to protect customer information during three different data incidents. According to the FCC, in each of the incidents, threat actors gained access to customer information, including names, addresses, and features…