In January, the BianLian ransomware group added an unnamed medical group to their leak site. In February, they also posted a teaser on their BreachForums account. Although neither listing named the victim, DataBreaches was able to figure out that it was the Northeast Surgical Group (“NESG”) in Michigan. DataBreaches reached out to them multiple times,…
Category: Malware
Medusa claims responsibility for Minneapolis Public Schools’ “encryption event,” provides proof of how much data they accessed
There’s another update to the “encryption event” first disclosed by Minneapolis Public Schools (MPS) in February. As of their most recent last update, MPS had stated that they had been able to restore systems and no ransom had been paid. At that time, DataBreaches had not found any gang claiming responsibility for the breach or…
ES: Cyberattack at l’Hospital Clínic has affected laboratory, pharmacy, and emergency services (updated)
Translation: A ransomware-type computer attack at the Hospital Clínic de Barcelona affects the center’s Laboratory, Pharmacy and emergency services. […] The Clinic has reported that they have coordinated with Salut and the other hospitals in the city to attend to emergencies, medical transport and urgent codes (such as strokes or heart attacks). At the moment, patients already admitted have…
Germany and Ukraine hit two high-value ransomware targets
On 28 February 2023, the German Regional Police (Landeskriminalamt Nordrhein-Westfalen) and the Ukrainian National Police (Націона́льна полі́ція Украї́ни), with support from Europol, the Dutch Police (Politie) and the United States Federal Bureau of Investigations, targeted suspected core members of the criminal group responsible for carrying out large-scale cyberattacks with the DoppelPaymer ransomware. This ransomware appeared…
Tennessee State, Southeastern Louisiana universities hit with cyberattacks
On March 2, Jonathan Greig reported: Two universities in Tennessee and Louisiana are struggling with cyberattacks that have crippled campus services and left students scrambling to find alternative tools. Tennessee State University — a public historically black land-grant university in Nashville — notified its more than 8,000 students on Wednesday that its IT systems were…
City of Modesto to notify people whose people information was accessed in last month’s ransomware attack
The Modesto Police Department is now acknowledging that a ransomware incident in early February might have exposed some people to the risk of identity theft. KCRA reports: On Thursday, the city said that it has been responding to a ransomware attack since last month and that a “limited amount” of the personal information of some…