Lawrence Abrams reports: The notorious REvil ransomware operation has returned amidst rising tensions between Russia and the USA, with new infrastructure and a modified encryptor allowing for more targeted attacks. In October, the REvil ransomware gang shut down after a law enforcement operation hijacked their Tor servers, followed by arrests of members by Russian law enforcement. […] A…
Category: Malware
Conti ransomware group responsible for RIPTA cyberattack
Tolly Taylor reports: The ransom note the Rhode Island Public Transit Authority received on Aug. 5 began with a chilling statement. “All of your files are currently encrypted by Conti strain,” the cyberhackers wrote. The next day, RIPTA hired Coveware Inc., a firm that helps entities recover hacked data, according to new documents obtained by…
Class cancelled at Kellogg Community College following ransomware attack
Fox17 reports from Michigan: Kellogg Community College announced on May 1 that the technology issues that started days before were caused by a ransomware attack. Due to the ongoing attack, all KCC campuses are closed until further notice. Read more at Fox17. DataBreaches has not seen any report as to who might be responsible for…
Court Rejects Demand for “Corrective” Notice in Blackbaud Data Breach MDL
Brianna Soltys and Kristin L. Bryan of Squire Patton Boggs write that the the Judicial Panel on Multidistrict Litigation, which had consolidated all federal lawsuits against Blackbaud in the District of South Carolina, has rejected plaintiffs’ motion to require Blackbaud to issue a corrective notice. As a brief reminder: Blackbaud provides third-party services for entities…
Purported Elgin County data posted online by ransomware group: cyber threat expert
Matthew Trevithick reports: The cybersecurity incident that has left Elgin County’s website and email system down since the start of the month may have been the result of a ransomware attack involving a notorious Russia-based ransomware syndicate, Global News has learned. A cyber threat expert says data purporting to belong to the county was posted to the website of the ransomware group…
Current, former Lakota Local Schools students possibly impacted by third-party data breach
Jared Goffinet reports on a third-party breach affecting some Ohio schools: A ransomware attack of a third-party data company may impact some current and former Lakota Local Schools students. Battelle for Kids was the recent victim of a data breach, according to the district. Battelle for Kids is a company that houses student’s state testing…