On October 22, DataBreaches reported that Kenosha Unified School District in Wisconsin had been added to Snatch Team’s leak site and then removed without explanation. The district had previously disclosed an incident in September. Snatch offered no proof pack and the quick removal of the listing left DataBreaches wondering if the district had decided to…
Category: Malware
Ca: DDSB recovering from cyber attack that left schools without access to email or emergency contact information
Jordan Fleguel reports: The Durham District School Board (DDSB) says it’s currently recovering from what it calls a ‘cyber-incident’ that has left schools without access to phone or email services as well as emergency contact information. In a letter to parents and guardians on Sunday, the school board said the incident first came to their…
Southampton County, Virginia reports ransomware incident (updated)
Add Southampton County in Virginia to any list you may be keeping of governments hit by ransomware. According to their notification: On September 6, 2022, a single server at Southampton was encrypted by a cyber criminal. Fortunately, Southampton fought off this cyber-attack with no interruption to essential County operations. However, after Southampton recovered from this…
Bits ‘n Pieces (Trozos y Piezas)
MX: LV threat actors claim to have hacked UnitedAuto On November 19, LV BLog added UnitedAuto, a Mexican automotive company, to its leak site, claiming to have more than 2TB of stolen personal information. The threat actors criticized their victim, stating “United Auto does not have any basic protection for their system. The company has…
FL: South Walton Fire District notifies patients of breach
On May 30, South Walton Fire District learned of unauthorized access to their network. Investigation revealed that patients’ potentially affected information included: names, addresses, Social Security numbers, dates of birth, treatment dates, medical diagnostic and treatment information, and health insurance information for patients transported by or treated by SWFD. Local media reports those potentially at risk…
Update: Norman Public Schools’ employee and student leaked on dark web by ransomware gang
On Nov 4, DataBreaches noted that Norman Public Schools (NPS) in Oklahoma reported what they described as a “malicious ransomware attack.” Since then, the district has worked to restore all services. Because the district did not respond to the threat actors’ ransom demands, this week the Hive ransomware team publicly claimed responsibility for the attack…