There’s an interesting monetary penalty notice involving a UK law firm stemming from a ransomware attack in 2020 and the ICO’s investigation of their data protection and security. The Information Commissioner announced today that it has issued Tuckers Solicitors a monetary penalty under section 155 of the Data Protection Act 2018 (“the DPA”). The penalty…
Category: Malware
Sodinokibi/REvil Ransomware Defendant Extradited to United States and Arraigned in Texas
There’s an update to a case previously noted in November. From the DOJ today: A man charged with conducting ransomware attacks against multiple victims, including the July 2021 attack against Kaseya, made his initial appearance and was arraigned today in the Northern District of Texas. According to an August 2021 indictment, Yaroslav Vasinskyi, 22, accessed…
Update: Central Indiana Orthopedics notifying 83,705 of October data breach
In October, 2021, this site reported that Central Indiana Orthopedics (CIO) had promptly disclosed a data security incident involving Grief threat actors. This week, CIO’s external counsel notified the Maine Attorney General’s Office about the incident, reporting that 83,705 patients were impacted, total. Types of information involved included name, address, Social Security number, and limited…
PA: Fleetwood Area School District hit by ransomware
WFMZ reports: Officials at a school in Berks County said their computer systems were attacked by ransomware. Fleetwood Area School District Superintendent Greg Miller sent a letter to families and staff Friday afternoon informing them that technical difficulties experienced on Wednesday morning were the result of a ransomware attack. Read more at WFMZ.
HC3: Destructive Malware Targeting Organizations in Ukraine
HHS Cybersecurity Program has issued another alert and whitepaper report (202202280900): Executive Summary Leading up to Russia’s unprovoked attack against Ukraine, threat actors deployed destructive malware against organizations in Ukraine to destroy computer systems and render them inoperable. Destructive malware can present a direct threat to an organization’s daily operations, impacting the availability of critical…
ContiLeaks providing new insights and evidence against Conti
It almost felt like Christmas came early in a winter of despair. As noted yesterday, a Conti member who appears furious with Conti for its statement supporting Russia started dumping internal records from Conti with a statement ending, “Glory to Ukraine!” The leak was first reported on Twitter by VX-Underground: Conti ransomware group previously put…