On September 7, the U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC), in coordination with the United Kingdom, sanctioned 11 individuals who are alleged to be part of the Russia-based Trickbot cybercrime group. At the same time, the U.S. Department of Justice (DOJ) unsealed indictments against nine individuals in connection with the…
Category: Malware
Hospital Sisters Health System’s CFO exits as it continues to handle ‘cybersecurity incident’
On August 29, DataBreaches reported that Hospital Sisters Health System (HSHS) and Prevea Health appeared to have been the victims of a ransomware attack. As of today, the notice on Prevea Health states, “HSHS and Prevea are experiencing a systemwide outage of clinical and administrative applications.” Prevea continues to describe it as a temporary outage….
MGM Resorts hit in disruptive cyberattack
Long-time readers may recall a story in January 2017 about a luxury hotel that reportedly paid extortion to ransomware attackers because guests were locked in their rooms. Some of the story was ultimately considered to be fake news, although the whole scenario initially seemed possible at the time. Fast forward more than six years and …
Rhysida claims responsibility for attacks on two U.S. health systems: Prospect Medical Holdings, Singing River Health
On August 3, Prospect Medical Holdings disclosed a ransomware attack that affected some of its 16 hospitals and 10 clinics, including three hospitals in Connecticut and hospitals run by Crozer Health. Although they have made some progress with recovery, a note on their website today states, “Prospect Medical Holdings, along with all Prospect Medical facilities,…
MS: Hinds County computer system remains under ransomware attack
Angela Williams reports: Hinds County is still experiencing computer issues following a cyberattack. The tax collector’s office will remain closed on Monday. The Circuit Clerk Office has also canceled jury duty for the week. Hinds County Administrator, Kenny Wayne Jones said in a statement, “Our systems and networks are being assessed, the process is intricate…
Quick note: Two more school districts hit by cyberattacks: Skokie-Morton Grove, Decatur ISD
Brett Callow of Emsisoft notes that LockBit has added Skokie-Morton Grove School District 69 in Illinois to their leak site. No proof of claim was posted and no description of any data allegedly stolen was provided. Elsewhere, The Messenger reports that Decatur ISD in Texas suspects a cybersecurity attack is responsible for the internet and…