Daryna Antoniuk reports: Pro-Palestinian hackers say they breached dozens of Israeli entities amid the ongoing war in Gaza, which has also extended into cyberspace. A group calling itself Cyber Toufan said it launched an operation against Israel at the end of November, promising to publish leaked information from hacked websites every day throughout the month….
Category: Hack
Recent attacks on Fred Hutch and Integris: Is attempting to extort patients directly becoming the “new normal?”
DataBreaches previously reported a breach involving Integris Health in Oklahoma. The incident did not involve encryption, but the threat actors were reportedly contacting patients directly and offering to remove their protected health information for a small fee before leaking or selling the data of what they claim is more than two million patients. DataBreaches noted…
Integris Health notifying patients of hack and warning them not to respond to the hackers
On December 24, Integris Health of Oklahoma started contacting patients about a cyberattack on November 28. The unnamed threat actors did not encrypt any of the health system’s files, but Integris learned that patients were being contacted directly by threat actors. Integris has posted a notice with updates and an FAQ to help inform those…
Troves Of Iranian Hacked Insurance Customer Data On Sale
Iran Intl reports: Anonymous hackers are selling 160 million customer information records cobbled together from 23 Iranian insurance companies for approximately $75,000. The Iranian Leakage Tracking System (Leakfa) has confirmed the validity of the hackers’ claim, stating that the information was obtained through a breach of the Expert Information Technologists (Fanavaran) company infrastructure. The information offered for…
ProSmile issues breach disclosure that creates more questions than it answers
On December 22, ProSmile Holdings, LLC in New Jersey issued a press release about a data breach. If ProSmile — a dental service organization — is a business associate or otherwise covered under HIPAA, no report from them has shown up yet on HHS’s public breach tool. They write, in part: In July 7, 2022,…
Cyber sleuths reveal how they infiltrate the biggest ransomware gangs
Conor James reports: When AlphV/BlackCat’s website went dark this month, it was like Chrimbo came early for cybersecurity defenders, some of whom seemingly believed law enforcement had busted one of the most menacing cyber criminal crews. The excitement lasted just five days, though, and its website is now back online, albeit in worse shape than…