Dorian Hargrove of CBS reports that Scripps Health has agreed to pay more than $3.5 million dollars to victims of a ransomware attack in 2021 that compromised the personal information of more than one million patients. More than 1 million patients? At the time, Scripps had reported that it was notifying 147,267 patients, and that…
Category: Malware
Ransomware Needs ‘Physical’ Damage For Insurance, Ohio Court Rules
Daphne Zhang reports: Owners Insurance Co. convinced the Ohio Supreme Court that it has no duty to cover a medical software company’s ransomware-related losses because the attack didn’t cause any property damage. EMOI Services LLC’s insurance policy “requires direct physical loss of or damage to media—Computer software cannot experience direct physical loss or physical damage, because…
NZ: Compliance investigation into Mercury IT breach commenced
Here’s yet another data breach case in which a court has issued a protective order. The New Zealand Privacy Commissioner writes about a court order issued after the LockBit attack on Mercury IT that might contribute to a supply chain attack; Justice Grice has released the reasons for making the interim orders this week. The High Court…
Hackers stole data from multiple electric utilities in recent ransomware attack
Sean Lyngaas reports: Hackers stole data belonging to multiple electric utilities in an October ransomware attack on a US government contractor that handles critical infrastructure projects across the country, according to a memo describing the hack obtained by CNN. […] The ransomware attack hit Chicago-based Sargent & Lundy, an engineering firm that has designed more…
Ransomware attacks hit Iowa schools, including Davenport, although public often left in dark
Maggie Bashore has an article on ransomware attacks hitting Iowa school districts over the past three years that covers a lot of issues, including the costs of cyberinsurance over time and the difficulties smaller districts may have in meeting requirements to even get a policy. She reports, in part: Fringer advises 45 school districts in…
Vanuatu ransomware attack claimed by RansomHouse
As previously reported, the South Pacific archipelago Vanuatu announced in early November that they had been hit with a ransomware attack that pretty much stranded the islands. Almost one month later, the islands had not recovered. On December 24, RansomHouse threat actors added the government of Vanuatu to their leak site, claiming to have locked…