On June 12, BreachForums reappeared on clearnet and Tor. The owner — or someone with access to the forum owner’s account — interacted a bit in the ShoutBox and posted an announcement: Hello BreachForums users! Some wild stuff has gone down recently. First off, Spamhaus has blacklisted our SMTP host. Then, we ran into more…
Category: Of Note
Federal criminal investigation involving Perry Johnson & Associates data breach
The Perry Johnson & Associates (PJ&A) data breach was the biggest reported breach involving protected health information in 2023, with more than 13 million patients affected1. Now WBEZ in Chicago reports that there is a federal criminal investigation related to the breach at the medical transcription service. Federal authorities are conducting a criminal investigation into…
Developing: BreachForums down, ShinyHunters’ and forum Telegram channels deleted?
Something seems to be up — or down, to be more accurate. BreachForums clearnet and onion sites are down, with the clearnet site returning a “502- Bad Gateway” response. A WhoIs lookup for BreachForums.st shows the name servers as ddos-guard.net. That is the domain used by ShinyHunters for the forum, so the government does not…
Frontier Communications Hack Ensnares 750,000 Customers, SSNs Stolen
Michael Kan reports: April’s cyberattack on internet service provider Frontier Communications enabled hackers to steal Social Security numbers for 750,000 users. In a data breach notice sent to Maine’s attorney general, the ISP says the incident affected 751,895 people. The company is preparing to send out data breach notifications to affected consumers as the hacking group allegedly responsible…
HC3: Analyst Note: Healthcare Sector DDoS Guide
May 30, 2024 HC3: Analyst Note TLP:CLEAR Report: 20240530120 Executive Summary A Distributed-Denial-of-Service (DDoS) attack is a type of cyber attack in which an attacker uses multiple systems, often referred to as a botnet, to send a high volume of traffic or requests to a targeted network or system, overwhelming it and making it unavailable…
FBI Cyber Lead Urges Potential LockBit Victims to Contact Internet Crime Complaint Center
FBI Cyber Division Assistant Director Bryan Vorndran on June 5 highlighted the Bureau’s “ongoing disruption” of the LockBit ransomware group and its affiliates, and urged potential victims to contact the Bureau’s Internet Crime Complaint Center (IC3). The Bureau now has more than 7,000 LockBit decryption keys in its possession, Vorndran said in a keynote at the…