Matt Burgess of Wired.com reports: For years, Russia’s cybercrime groups have acted with relative impunity. The Kremlin and local law enforcement have largely turned a blind eye to disruptive ransomware attacks as long as they didn’t target Russian companies. Despite direct pressure on Vladimir Putin to tackle ransomware groups, they’re still intimately tied to Russia’s interests. A recent leak from…
Category: Malware
Exotic Lily is a business-like access broker for ransomware gangs
Jeff Burt reports: A group with links to high-profile ransomware crews Conti and Diavol is working as an internet access broker (IAB) for a Russia-linked cybercriminal gang, according to Google’s Threat Analysis Group (TAG). Exotic Lily gains access to vulnerable corporate networks then sells that access to the highest bidder among threat groups, which then…
1 Million Texans Potentially Impacted By Dental Care Data Breach
CBS DFW reports: More than a million Texans may have been impacted by a massive data breach involving a large dental care provider. Jefferson Dental and Orthodontics, which has 72 offices across Texas, reported to the Texas Attorney General’s Office a data breach affecting up to 1,026,820 Texans. The breach was posted on the state’s…
And as the work week draws to a close… (updated)
And as this work week drew to a close, we also learned about these breaches involving patient data that were reported to HHS earlier this month: Dialyze Direct, LLC in New Jersey notified HHS that 14,203 patients were impacted by an incident they coded as a hacking/IT incident involving email. There is no statement on…
WVa: Wheeling Health Right victim of ransomware attack
From the notice on their website: Notice Regarding Recent Data Breach What Happened? On January 18, 2022, Wheeling Health Right discovered that our organization was victimized by a ransomware attack that encrypted our systems. Upon discovery of the security incident, we engaged legal counsel and a data breach remediation firm to conduct an investigation into…
MO: Capital Region reaching out to patients about cyberattack
The News Tribune reports that the Capital Region Medical Center in Missouri has started notifying patients whose protected health information (PHI) was accessed during a ransomware incident in December, 2021 that left their phone systems and network down for several days. CRMC had disclosed the incident promptly but had not been able to immediately determine…