HC3 has issued an alert about Lorenz ransomware. Lorenz threat actors have been mentioned on DataBreaches’ site several times since 2021. In one case they attacked and exfiltrated data of 500,000 patients of Wolfe Clinic in Iowa, and they recently posted data from Salud Family Health in Colorado. Salud has not yet reported a number…
Category: Malware
Doctors Center Hospital reports 1.2 million patients affected by ransomware attack
On some as yet undisclosed date, Doctors Center Hospital in Puerto Rico became the victim of a relatively new ransomware group calling themselves Project Relic. To date, Doctors Center Hospital (DCH) has not responded to inquiries sent to it by DataBreaches on November 11 and November 12, and their email appeared to be out of…
DOCS Medical Group discloses September ransomware incident
DOCS Medical Group is an urgent care and primary care provider in Connecticut with multiple locations. They also provide telemedicine services. On September 7, DOCS detected abnormal activity that was quickly identified as a ransomware attack. According to their notification letter to patients dated November 7, an unspecified number of patients had their information on…
Au: Xavier College says stolen student data might be released after hack
Adam Carey reports: Hackers have threatened to publish the personal information of current and prospective students of Xavier College online after a cyberattack, the school says. The hack took place in June, but the school waited until this week to inform the families after it deemed that the number of people whose information had been…
Michigan prosthetics and orthotics provider discloses ransomware attack back in January (Updated)
Wright & Filippis, a well-known orthotics and prosthetics provider in Michigan, issued a press release yesterday about a cyberattack between January 26 and January 28, 2022. While the press release is not specific about the nature of the attack, a companion FAQ indicates that the attack resulted in the deployment of ransomware. Wright & Filippis…
New AxLocker ransomware encrypts files, then steals your Discord account
Bill Toulas reports: The new ‘AXLocker’ ransomware family is not only encrypting victims’ files and demanding a ransom payment but also stealing the Discord accounts of infected users. When a user logs into Discord with their credentials, the platform sends back a user authentication token saved on the computer. This token can then be used…