Retreat Behavioral Health (RBH) has addiction treatment facilities in Florida, Pennsylvania, and Connecticut. On July 1, 2022, they reportedly detected a ransomware attack. Letters were sent out this week, but because Massachusetts actually prohibits entities from providing important details in notifications to consumers, there’s a lot we don’t know about this incident yet. Specifically, the…
Category: Malware
Bits ‘n Pieces (Trozos y Piezas)
BR: Monte Cristalina claimed by LockBit3.0 On December 19, Monte Cristalina S.A. was added to LockBit3.0’s leak site. The group claims to have 135GB of information about the holding company, and has already uploaded some data as proof. Access to Monte Cristalina’s website has been blocked, and we have found no acknowledgement or confirmation by…
NC: Monarch notifies HHS of breach, but where are the details and notice?
On September 1, a listing on a dark web site by a group calling themselves Don#t_Leaks named MonarchNC as a victim. The listing did not appear for long. The only “proof” offered at the time was a filetree and a screencap of what might be an index of an inbox showing monarchnc.org domain in email…
Port of Lisbon website still down as LockBit gang claims cyberattack
Jonathan Greig reports: The website for the Port of Lisbon is still down days after officials confirmed it was the target of a cyberattack. The Port of Lisbon is Portugal’s busiest and one of the most used across all of Europe, handling 13,200,000 tonnes of cargo each year due to its strategic location between Europe…
MN: ISD 728 statement about ransomware attack
ISD 728 in Minnesota was hit with a ransomware attack on November 23. On December 23, they mailed notification letters to those potentially affected. A copy of the letter was submitted to the Montana Attorney General’s Office and is embedded below: The district also posted a notice to families on their website: Statement Released to…
Cyberattacks: higher education on high alert despite the holidays
The following is a machine translation of a report by Valéry Rieß-Marchive: cIn mid-September, Toulouse INP started the school year on a cyberattack with ransomware . At the beginning of December, Grenoble INP informed of an “intrusion” on its computer servers, but not to mention a cyberattack . At the same time, our colleagues from Parisian revealed that the IUT Paris – Rives de Seine was openly…