The Akira ransomware gang exploited an unsecured webcam to bypass EDR and launch encryption attacks on a victim’s network. Pierluigi Paganini reports: Cybersecurity researchers at S-RM team discovered a novel attack technique used by the Akira ransomware gang. The ransomware group used an unsecured webcam to encrypt systems within a target’s network, bypassing Endpoint Detection…
Category: Malware
HCRG Care’s lawyers claimed an injunction issued in a “private” hearing required us to remove two posts. We didn’t comply.
Occasionally, entities in other countries try to take legal action against DataBreaches.net to chill or censor this site’s reporting on their breaches. None of them have prevailed, in part due to the protections we have here under the First Amendment, and in part to the pro bono legal defense afforded to this site. This is…
Japanese cancer hospital confirms breach; Qilin gang claims responsibility
Stefanie Schappert reports: The Qilin ransomware group said it is responsible for the February 10th hack of a prestigious cancer treatment center in Japan, exposing the sensitive health information of 300,000 patients and leaving its hospital system “unusable.” The Utsunomiya Central Clinic (UCC) cancer treatment center first alerted the public to the ransomware attack on…
FTC, MGM close to solving dispute over costly 2023 cyberattack
Richard N. Velotta reports: The Federal Trade Commission’s dispute with MGM Resorts International over providing information about 2023’s costly cyberattack against the company may be coming to a resolution. The FTC has told MGM it plans to withdraw its civil investigative demand regarding the incident that cost the company an estimated $100 million and crippled the company’s…
Info accessed in Rainbow board data breach ‘deleted and has not been shared’
Sudbury.com reports: Data acquired by unauthorized individuals during Rainbow District School Board’s recent cyber incident “was deleted and has not been shared,” according to an update on the situation from the school board. The school board also said in the Feb. 28 statement that three weeks after the cyber incident, which meant internet was unavailable…
Black Basta exposed: A look at a cybercrime data leak and a key member, “Tramp”
Intel471 reports: On Feb. 11, 2025, a mysterious leaker going by the Telegram username ExploitWhispers released one year’s worth of internal communications between members of the Black Basta ransomware group on a Telegram channel. Black Basta is still active in a reduced capacity, but in 2022, it was the third most impactful ransomware group. Its members appeared to be experienced…