Tim Starks reports: Ransomware hackers began leaking Accenture data after the consulting giant suffered a security incident where the perpetrators made off with client-related documents and work materials. The gang, known as LockBit 2.0, has threatened to leak further after providing purported proof of the breach. Accenture acknowledged the attack on Wednesday, but has downplayed…
Category: Malware
SynAck ransomware gang releases decryption keys for old victims
Catalin Cimpanu reports has this exclusive: The El_Cometa ransomware gang, formerly known as SynAck, has released today master decryption keys for the victims they infected between July 2017 and early 2021. The leaked keys were provided to The Record earlier today by an individual who identified themselves as a member of the former SynAck group. Read more…
Ransomware attackers claim to have stolen data from three NZ firms
Tom Pullar-Strecker reports: South Island businesses may be paying an early price for the United States’ recent successes against ransomware attackers. Evidence is emerging that ransomware criminals may be switching attacks to “soft targets” including New Zealand and Australian firms after President Biden laid down the law with Russia, experts say. A ransomware group known…
Crytek confirms Egregor ransomware attack, customer data theft
Sergiu Gatlan reports: Game developer and publisher Crytek has confirmed that the Egregor ransomware gang breached its network in October 2020, encrypting systems and stealing files containing customers’ personal info later leaked on the gang’s dark web leak site. The company acknowledged the attack in breach notification letters sent to impacted individuals earlier this month…
k-12 school districts fall prey to Pysa ransomware
—– A DataBreaches.net report by Dissent and Chum1ng0 —– In Part 1 of this series, DataBreaches.net described a number of attacks by Pysa (mespinoza) threat actors on medical entities in the U.S. In Part 2, we look at eight k-12 public school districts in the U.S. who either appear on the threat actors’ dedicated leak…
Greenway Health investigating claims by threat actors of a cyberattack (updated)
Update of August 10: Following publication of our article with a statement from Greenway Health that the attack appeared to be on a former client and not them (but it was under investigation), DataBreaches.net checked the threat actor’s leak site today and found the entire listing is gone. This could mean a number of things,…