This week, DataBreaches.net reported on a new dedicated leak site and threat actors who had hit Clover Park School District in Washington. The same threat actors, whose name is not even clear (are they PayOrGrief or Grief_List or…) have listed three other victims on their site who presumably did not pay their ransom demands. One…
Category: Malware
Caravus impacted by Netgain Technology breach because vendor failure to destroy legacy data
I’ve continued to add updates to a post about the Netgain Technology breach. Keep in mind that the ransomware incident occurred in November, 2020, and since January, we have seen entities disclosing the incident. But one disclosure today is somewhat frustrating to read — and not just for the delay in notification, but for the…
De: Waschbär reports cyberattack
Waschbär is an environmentally friendly online retailer of clothes, household goods, and other products. On its web site, there is a notice about a malware incident (the following is a machine translation. “Waschbär” means “raccoon.”) A more detailed version follows from their May 26 statement (machine translation): On Wednesday afternoon, May 19th, 2021, our company…
Canada Post informs 44 large business customers of data breach affecting 950K customers
Jackie Dunham reports: Canada Post has informed 44 of its large business customers that information relating to more than 950,000 customers was compromised after one of its suppliers fell victim to a malware attack late last week. On Wednesday, the postal agency announced that Commport Communications, an electronic data interchange solution supplier, had notified them…
Colonial Pipeline Accused of Negligence in Proposed Class Action
Jake Holland reports: Colonial Pipeline Co. and its owners acted negligently by employing lax cybersecurity standards that left the company vulnerable to a massive ransomware attack, a proposed Georgia federal court class action alleges. The company breached its duty to employ industry security standards, and that failure translated into system outages that harmed consumers by raising…
NZ: New Zealand, hacker attack: Zeppelin ransomware blocks patient care at Waikato DHB
Marco A. De Felice writes: More than a week after the May 18 cyber attack, the computer systems of the Waikato District Health Board (Waikato DHB) have not yet been restored. Some scheduled surgeries in DHB’s five hospitals have been postponed, while non-urgent cases are postponed until all IT systems are back in operation. From…