On March 14, DataBreaches.net reported that Advanced Urgent Care of the Florida Keys had been attacked, and patient data dumped. The data dump had been listed on a Russian-language forum known for data dumps, and the threat actor, then known as “m1x,” called the medical group “Malicious Defaulters” because they wouldn’t pay to prevent data…
Category: Malware
Patients need to be notified sooner of ransomware dumps
In the past year, we have seen a significant increase in the use of dedicated leak sites where ransomware threat actors post the names of victims and dump some of their data to pressure them to pay demanded ransom. In the U.S., HIPAA gives covered entities no more than 60 days from discovery of a…
CERT-in warns Indian companies about Egregor that sweeps IT system of organisations and steals data
CIOL Bureau reports: The country’s cybersecurity agency CERT-in has alerted users against the malicious spread of ransomware virus ‘Egregor’ that threatens to release sensitive corporate data of the victim organisation if not paid. The CERT-In or the Indian Computer Emergency Response Team said in the latest advisory that “while the initial infection vector and propagation…
UVM Hospital Network Hit by Cyber Attack Restoring Services
NECN reports: Computer experts at the University of Vermont Medical Center are working to restore systems disabled in a cyberattack that have hurt the hospital’s ability to provide some cancer treatments. Officials are working to expand the capacity to provide chemotherapy at the UVM Medical Center in Burlington to seven days per week and three…
Val-de-Marne: Alfortville town hall paralyzed by a computer attack
archyde reports: The municipal computers were suddenly paralyzed Wednesday evening: “a general plantade”, in the words of the mayor PS of Alfortville (Val-de-Marne), Luc Carvounas. Its town hall was the target of a cyber attack by “ransomware”, that is to say that the hackers managed to enter the computer system and to exfiltrate, before encrypting…
Luxottica has a lot more explaining to do
Update: My source was correct. On November 12, HHS added Luxottica’s report to their public breach tool. Luxottica reported, as a business associate, that 829,454 patients were impacted by the August breach. In September, we learned that the eyewear giant Luxottica had suffered a massive ransomware attack that resulted in its suspending operations in both…