Yesterday, DataBreaches reported on SNAtch Team and how they were not a ransomware gang or using what had been referred to as the Snatch locker or ransomware. In that report, DataBreaches included a description provided by their spokesperson about their attack on the South Africa Department of Defense — an attack that SANDF initially dismissed…
Category: Hack
Indiana notifying Medicaid recipients of CareSource security breach
Carley Lanich reports: The protected health information of some Indiana Medicaid members may have been compromised in a recent security breach involving Ohio-based CareSource. Officials with the Indiana Family and Social Services Administration announced Friday that the breach of CareSource, a managed care entity, happened in late May and involved the personal information of more…
At some point, SNAtch Team stopped being the Snatch ransomware gang. Were journalists the last to know?
In December 2019, Sophos published an analysis of Snatch ransomware. In June 2020, DFIR Report provided a case study, and in July 2020, LIFARS wrote an article about Snatch ransomware having been detected in attacks in June. Since then, the Snatch leak site has continued to add victims and the media (including DataBreaches) has continued to…
UMinn sued, accused of taking insufficient action to prevent data breach
The Talk of DelMarVa reports: A lawsuit filed on behalf of a former student and former employee at the University of Minnesota accuses the university of not doing enough to protect personal information from a recent data breach. Attorneys for the two plaintiffs said in the lawsuit filed in federal court Friday that the university “was fully…
AZ: Data breach could affect more than 100,000 in Pima County
Jamie Donnelly reports on yet more people affected by the MOVEit breach: More than 100,000 Pima County residents could be affected by a nationwide data breach that affected the company that handled COVID-19 case investigations and contact tracing here, officials say. The company, Maximus Health Services Inc., notified the county earlier this month that data…
One month later, Ranhill still hasn’t fully recovered from cyberattack
On July 26, DataBreaches reported that DESORDEN had attacked Ranhill Utilities Berhad, a provider of water and power supply in Malaysia. At the time, DESORDEN claimed, in part: The initial data breach was initiated on Nov 2021. For over 18 months, DESORDEN has been in their systems. On 17th July 2023, our group infiltrated their…