Alert Code AA23-165A CISA has posted an advisory on LockBit. SUMMARY In 2022, LockBit was the most deployed ransomware variant across the world and continues to be prolific in 2023. Since January 2020, affiliates using LockBit have attacked organizations of varying sizes across an array of critical infrastructure sectors, including financial services, food and agriculture,…
Category: Malware
School community OSG Hengelo closes deal with hackers after ransomware attack
Ruetir reports: OSG Hengelo says that at the moment it is still unclear exactly what data the hackers have obtained. “It is still under investigation. As soon as there is more clarity about this, we will tell you,” the board says in a response to students and parents. Employees and students can now use WiFi…
49ers agree to settle data breach class action lawsuit, must create new IT positions
This site cannot keep up with all the class action litigation settlements, but when we do report on one, we try to see what the settlement requirements in terms of improving infosecurity and cybersecurity. Here’s one with a requirement, as reported by The Athletic: The San Francisco 49ers agreed to settle a class action lawsuit stemming from a February…
Another hospital hit by ransomware: Columbus Regional Healthcare System in North Carolina hit by Daixin
Columbus Regional Healthcare System (CRHS) is a non-profit organization in North Carolina licensed for 154 beds. The Daixin ransomware group claims that on May 18, they encrypted the hospital’s servers after exfiltrating data and deleting backups. A Ransom Demand and Failed Negotiations A spokesperson for Daixin tells DataBreaches that three days after they encrypted the…
Au: Hackers Follow Through with Dark Web Threat After Law Firm Rejects Ransom
GVS reports: A hacking group claiming to be Russian-linked cybercriminals has published sensitive data from one of Australia’s largest law firms, HWL Ebsworth, after the firm refused to pay their ransom demands. The AlphV ransomware gang, also known as BlackCat, announced on the dark web that it had released 1.45 terabytes of data allegedly stolen…
Jm: Mayberry clients urged to act fast after cyberattack by PLAY gang
Neville Graham reports: With no indication of the extent of a data breach and cyberattack at investment firm Mayberry, the company yesterday urged clients to take immediate steps to protect themselves “against any possible adverse consequences”. In its second notice to its clients since Friday night, Mayberry yesterday asked them to actively monitor all accounts…