The Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA), which President Biden signed into law in March 2022, required CISA to establish the RVWP (see Section 105 [6 U.S.C. 652]). ALERT CISA Announces Ransomware Vulnerability Warning Pilot Release Date March 13, 2023 Today, CISA is announcing the creation of the Ransomware Vulnerability Warning…
Category: Malware
What’s new in ransomware gang pressure tactics? Not as much as you might think.
It’s hard to believe, but it has really been 17 years since PogoWasRight.org began blogging about breaches, and it’s been 14 years since this spinoff site, DataBreaches.net, opened. Since then, DataBreaches has often reported on criminals’ tactics to secure payment from victims, especially those in the healthcare sector. Thousands of archived posts on DataBreaches.net provide…
Housing Authority of the City of Los Angeles discloses a “complex cyber-attack.” We call it a ransomware attack.
As many of us were waking up to a brand new year, DataBreaches reported that LockBit 3.0 had claimed an attack on the Housing Authority of the City of Los Angeles (HACLA). Screencaps of directories and some files were provided by LockBit as proof of claims. Numerous news outlets picked up the news of the attack,…
Wilkes-Barre Career and Technical Center averts catastrophe from cyberattack
They could have headlined this story as “Good security practices pay off.” Michael P. Buffer reports: A cyber attack on a server at the Wilkes-Barre Career and Technical Center was discovered Wednesday, and antivirus and backup procedures “prevented a catastrophe” and “a lot of problems,” Administrative Director Anthony C. Guariglia said Thursday. The regional vo-tech…
Weekend update: Non-US hospitals hit by cyberattacks
Belgium: CHU St. Pierre Cyberattack DHnet in Belgium reports that Saint-Pierre hospital in central Brussels temporarily closed its emergency room and diverted line 112 to other institutions due to a cyberattack early Saturday morning. The attack reportedly disrupted the functioning of many applications, including patient records and telephone lines. By 5:00 pm Brussels time, most…
Highly sensitive files from Berkeley County Schools dumped by ransomware gang
In early February, Berkeley County Schools in West Virginia experienced a ransomware attack. On March 3, the district issued a notice on its website that stated their investigation determined “some data stored in Berkeley County Schools’ network may have been accessed that included employee Social Security numbers and direct deposit information.” That notice makes no…