The UT investigated the decision-making process of victims who had to pay ransoms during ransomware attacks. UT researcher Tom Meurs and his colleagues analyzed 481 ransomware attacks, data from the Dutch police and a Dutch incident response party. Organizations with recoverable backups in particular were often better able to avoid paying ransoms. Data exfiltration led…
Category: Malware
Federal government slaps targeted sanctions on Russian cybercriminal behind 2022 Medibank Private cyber attack
Heloise Vyas reports: The Australian government have cracked down on a Russian cybercriminal believed to behind a Medibank Private breach in 2022 which marked the “single most devastating attack” in the country’s history. In a joint press conference with the Foreign Affairs Minister, Deputy Prime Minister, and Cyber Security Minister, the Commonwealth declared it would,…
UPDATE: Ransomware attack affecting Tietoevry’s services for some customers in Sweden
21 January 2024 [UPDATED: 10:45 CET, January 21] One of Tietoevry’s several datacenters in Sweden was partially subject to a ransomware attack during the night of Jan 19-20. While overall recovery has progressed, services for the customers in scope remain impacted. The attack was limited to one part of one of our Swedish datacenters, impacting…
Primary Health & Wellness Center, LLC’s public notice of ransomware incident
In the process of researching breach reports submitted to HHS, DataBreaches came across a public notice for an incident affecting Primary Health & Wellness Center, LLC in Maryland. The covered entity is to be commended for the details and transparency in their notice, although they do not name the threat actor/group involved or any details…
Tilbury District Family Health Team confirms patient data impacted by October ransomware attack
CKXS reports: The fallout continues following last year’s ransomware attack that resulted in a massive data breach at five southwestern Ontario hospitals. The Tilbury District Family Health Team (TDFHT) has confirmed that its patient health information was impacted by the cyberattack on October 23, 2023, which also resulted in varying amounts of patient and staff…
Cloud Vendor Returns North Star Health Alliance Data Stolen and Stored by LockBit
Marianne Kolbasuk McGee reports: A cloud services firm has turned over to a New York hospital alliance the patient data stolen in an August ransomware attack by the notorious LockBit gang. The hospital group – North Star Health Alliance – had filed a lawsuit against LockBit in November as a legal maneuver to force the…