Hacking Group Known as “Andariel” Used Ransom Proceeds to Fund Theft of Sensitive Information from Defense and Technology Organizations Worldwide, Including U.S. Government Agencies A grand jury in Kansas City, Kansas, returned an indictment on Wednesday charging North Korean national Rim Jong Hyok for his involvement in a conspiracy to hack and extort U.S. hospitals…
Category: Malware
39 healthcare providers sue UnitedHealth over Change hack
There’s no way that DataBreaches has enough time to track all of the lawsuits filed against UnitedHealth Group and its subsidiaries, Optum and Change Healthcare, as a result of the Change Healthcare hack, but over on Becker’s Hospital Review, Giles Bruce reported about a suit of particular note: Thirty-nine healthcare providers and the National Community…
Ransomware ecosystem fragmenting, but not necessarily great news
Alexander Martin reports: Veteran cybercriminals involved in ransomware attacks are increasingly shying away from large ransomware-as-a-service (RaaS) platforms following a spate of law enforcement disruption operations, as well as the AlphV/BlackCat gang’s high-profile exit scam, according to officials and industry experts. Organized online crime groups are attempting to reduce their dependence on RaaS services by developing…
Acadian Ambulance hit by ransomware attack; Daixin claims info on 10 million patients stolen
A new listing on Daixin Team’s leak site suggested serious problems for Acadian Ambulance. Acadian Ambulance offers several health-related services, including emergency medical transportation, non-emergency transportation, at-home health care, air services, and medical education. It has locations in Louisiana, Mississippi, Tennessee, and Texas. Acadian has been in business since 1971, and at this point, employees…
Suffolk County cyberattack recovery costs hit $25M; final tab still being tallied
Remember how Suffolk County in New York had decided cyberinsurance was too expensive and how they got hit with a ransomware attack by AlphV in 2022. The county not only had no insurance, but it had no cyberattack recovery plan. Mark Harrington reports another update on that incident: Suffolk County approved more than $25…
West Midlands Police arrest teen allegedly involved with MGM Resorts attack
West Midlands Police in the UK have announced the arrest of a teenager allegedly involved in the attack on MGM Resorts. That attack has been widely attributed to Scattered Spider, although the announcement does not specifically name the group: Officers from our Regional Organised Crime Unit for the West Midlands (ROCUWM) joined officers from the…