Lawrence Abrams reports: The REvil ransomware operation announced this week that they are using DDoS attacks and voice calls to journalists and victim’s business partners to generate ransom payments. Read more on BleepingComputer.
Category: Malware
New ransomware only decrypts victims who join their Discord server
Lawrence Abrams reports: A new ransomware called ‘Hog’ encrypts users’ devices and only decrypts them if they join the developer’s Discord server. This week, security researcher MalwareHunterTeam found an in-development decryptor for the Hog Ransomware that requires victims to join their Discord server to decrypt their files. Read more on BleepingComputer.
SC: Sandhills Medical Foundation notifies patients of vendor breach
Updated 3/6/2021: Sandhills reported this incident to Maine as impacting 39,602 patients, total. Original Post: Sandhills Medical Foundation has posted a notice of a data security incident on their web site, reproduced below. Based on the dates and description, it appears that this is the Netgain Technology LLC data breach that has previously been noted…
Spirit Airlines hit by Nefilim ransomware – Report
Marco De Felice reports: In these hours, the ransomware group Nefilim has published on the dark web a first part of data stolen from the American “ultra low cost” company Spirit Airlines. The first block contains over 40GB of data with over 33,000 files. Financial data, personal information of customers who purchased tickets to fly with…
Woodcreek Provider Services notifies more than 210,000 patients of Netgain Technology ransomware incident
Back in January, this site noted that a ransomware attack on Netgain Technology LLC had impacted Ramsey County. Previous coverage of the Netgain Technology attack had reported that Netgain had stated that they were victims of a ransomware attack on November 24th, 2020 and On December 4th, customers began receiving emails from Netgain stating that…
Southern Illinois University School of Medicine impacted by Accellion breach, notifies patients
It appears that SIU was impacted by the Accellion breach that has been in the news a lot this past month. SIU is the first entity, however, to disclose that the incident impacted protected health information (PHI), although as DataBreaches.net reported, this site found what might be PHI in Jones Day’s dumped data. SIU does…