Tony Keith reports: A news release issued by the Colorado Department of Higher Education is notifying the public of a “data incident.” KKTV 11 News is working to learn more about the situation, but the release reads as follows: The Colorado Department of Higher Education (“CDHE”) is providing notice of a cybersecurity incident that may…
Category: Malware
Crozer Health’s computer systems were knocked offline Thursday by a ransomware attack
Harold Brubaker reports: Computer systems at Delaware County’s Crozer Health were offline Thursday after a ransomware attack on the health system’s owner, Prospect Medical Holdings Inc., the company said. “We have experienced a ransomware attack that is Prospect-wide, and are currently evaluating the situation,” Crozer spokesperson Lori Bookbinder said in a text. “We will provide…
Cyber attack on Montclair Township led to $450K ransom payment
Talia Weiner reports: The Township of Montclair’s insurer negotiated a settlement of $450,000 with the people behind a recent “cyber incident” in order to end the attack, a report says. […] “To guard against future incidents, the township has installed the most sophisticated dual authentication system available to its own system and it is currently…
MHMR Authority of Brazos Valley provides notice of ransomware attack last November (1)
On December 22, 2022 DataBreaches added MHMR Authority of Brazos Valley to our non-public breach worksheet. Based on information at that time from Hive threat actors, it appeared that the non-profit Texas mental health and substance abuse treatment provider’s files had been locked on November 5. Their listing on Hive’s leak site was a sure…
Attacked by Black Basta, BankCard USA paid ransom.
Marco A. De Felice of SuspectFile (aka @amvinfe) reports that BankCard USA (BUSA) recently paid the Black Basta ransomware group $50,000 ransom. But if BUSA hoped to keep the breach and payment out of the public eye, they should sit down before they read SuspectFile’s reporting, because it is going to make them sad. BankCard…
The Chattanooga Heart Institute to notify 170,450 about March “data security incident”
In May, DataBreaches dutifully noted The Chattanooga Heart Institute (CHI) on our non-public worksheets. At the time, all we knew was that Karakurt threat actors had claimed to have attacked them and to have exfiltrated 158 GB of data. There was no proof of claim offered, but Karakurt wrote: Employees and patients’ private data will…