Jeremy Nadel reports: The investigation will cover whether the law firm violated the Privacy Act by failing to protect sensitive data or properly notifying individuals affected by the breach. The breach saw 1.1TB of data lost to hackers and impacted 65 government agency clients’ data as well as data belonging to private firms as well. The Office of…
Category: Hack
Grace Lutheran Communities attacked by BlackCat; employee and resident data acquired
Grace Lutheran Foundation, which does business as Grace Lutheran Communities in Wisconsin, offers a variety of services including rehabilitation services, assisted living, skilled nursing, independent living, adult day services, and childcare. On February 9, they posted a notice about a data breach they discovered on January 22, 2024. They emphasized that there was no indication…
Updating: Prince George’s County Public Schools breach affected almost 100,000
In August 2023, Prince George’s County Public Schools disclosed a cyberattack. At the time, they reported that “an estimated 4,500 user accounts out of 180,000 were impacted, primarily staff accounts. The school system is still assessing the full scope of this incident, but as of this time, the main business and student information systems –…
Reward for Information: ALPHV/Blackcat Ransomware as a Service
REWARD OF UP TO $15 MILLION NAME: ALPHV/Blackcat Ransomware as a Service (RaaS) NATIONALITY: Various (Unknown) CITIZENSHIP: Various (Unknown) The U.S. Department of State is offering a reward of up to $10,000,000 for information leading to the identification or location of any individual(s) who hold a key leadership position in the Transnational Organized Crime group behind the ALPHV/Blackcat ransomware variant. In…
Millions of hacked toothbrushes used in Swiss cyber attack (1)
Andy Cuthbertson reports: Hackers have infected millions of smart toothbrushes with malware in order to carry out a massive cyber attack against a Swiss company, according to reports. The internet-connected toothbrushes were linked together in something known as a botnet in order to perform a distributed denial of service (DDoS) attack, which overloads websites and servers with…
Lawsuits Involving GoAnywhere Data Breach Consolidated at One Florida Federal Court
The ransomware gang known as Clop created massive headaches for numerous entities with attacks involving the exploitation of vulnerabilities in file transfer software. Since December 2020, the same gang exploited vulnerabilities in Accellion, Fortra’s GoAnywhere software, and Progress Software’s MOVEit software. Christopher Brown reports a litigation update in cases stemming from the GoAnywhere breach disclosed…