The “Happy Blog” leak site belonging to the Sodinokibi threat actors known as “REvil” (“Are Evil”) is offline, and their spokesperson “Unknown” has been silent for a few days. Lawrence Abrams of Bleeping Computer says all of REvil’s sites are down, including the payment site. So have they folded? REvil’s “Unknown” consistently said they would…
Category: Malware
Parts of Kazakhstan e-gov portal infected with Razy malware
Razy malware has been around for a number of years now, and is still causing trouble. A Windows-based malware, one of the reasons that the malware has continued to be effective is that it can appear to be free software or a file on what would normally be a trusted site by the public, such…
ME: York Animal Hospital hit by ransomware, lost all patient records for past four years.
Camille Fine reports: The team at York Animal Hospital has nearly finished manually reentering inventory data that was lost to a ransomware attack that wiped all patient records from the past four years. “Five phone lines have been ringing off the hook,” owner Bill Walak said Monday. “We’ve been inundated all day.” People have been calling to make appointments…
Dotty’s Reveals Details about Data Breach Incident
Jerome Garcia reports: Dotty’s, a company that runs some 120 gaming venues in Nevada, has reportedly suffered a data breach. Owned by Craig Estey and his Nevada Restaurant Services (NRS) company, it seems that Dotty’s was the victim of a cyberattack related to malware earlier this year. Dotty’s data breach was first unveiled last week by Vital Vegas, a website run by Scott…
Update on The Woodruff Institute ransomware incident
On June 20, DataBreaches.net reported that The Woodruff Institute in Florida had been attacked by “Grief” threat actors. At that time, the threat actors had dumped some files concerning business operations from the multi-location plastic surgery and dermatology practice, but other than about 50 laboratory test result reports for patients, there was not a tremendous number…
More than four months after DarkSide attack, Guess notifies individuals of breach
In April, DataBreaches.net reported a chat with DarkSide threat actors. As part of that report, this site noted that Guess, the well-known clothing and accessories retailer, had been attacked in February and listed on the DarkSide threat actor’s dedicated leak site. DataBreaches.net had looked at the proof of claim that DarkSide had posted and described…