For a brief period yesterday, visitors to Hive ransomware’s leak site would have seen Partnership HealthPlan of California listed. According to the listing, the threat actors claim to have exfiltrated 850,000 unique records with name, Social Security Number, date of birth, address, contact information, and more. Hive claimed that they had 400 GB of stolen…
Category: Malware
‘I can fight with a keyboard’: How one Ukrainian IT specialist exposed a notorious Russian ransomware gang
Sean Lyngaas reports: As Russian artillery began raining down on his homeland last month, one Ukrainian computer researcher decided to fight back the best way he knew how — by sabotaging one of the most formidable ransomware gangs in Russia. Four days into Russia’s invasion, the researcher began publishing the biggest leak ever of files and data from…
Officials to give update on Newfoundland and Labrador cyberattack Wednesday
CBC News reports: Officials in Newfoundland and Labrador will give an update Wednesday on the cyberattack that paralyzed the province’s health-care system for weeks. Health Minister John Haggie and Eastern Health CEO David Diamond will talk about the attack and its impact on the health-care system beginning at 10:30 a.m. NT. The conference will be streamed on the…
Oklahoma City Indian Clinic impacted by Suncrypt’s ransomware attack
The Oklahoma City Indian Clinic (OKCIC) serves 20,000 patients from more than 200 different Native American tribes. A note on their website and their Twitter account currently apologizes that due to technological issues, the pharmacy automatic refill line and mail order services will be down for an indeterminate amount of time. The home page of…
Weekend update: Christie Clinic, CSI Laboratories report breaches
Christie Business Holdings Company, P.C. (“Christie Clinic”) in Illinois Christie Business Holdings Company, P.C. (“Christie Clinic”) in Illinois issued a breach notice that is also prominently posted on their website. According to their notice, an unauthorized actor gained access to their system between July 14, 2021 and August 19, 2021. The unauthorized actor did not…
TX: Val Verde Regional Medical Center patient data dumped by LockBit
Val Verde Regional Medical Center (VVRMC) appears to have been the victim of a ransomware attack involving LockBit. According to LockBit, Val Verde Memorial Hospital was compromised and 96,000 patient records were exfiltrated. The listing was added to the leak site on March 16, with LockBit noting that the patient records had the following table…