On September 29, DataBreaches.net sent an email to Golden Gate Regional Center (GGRC) asking about claims by Conti threat actors that they had encrypted GGRC’s system(s). As proof, the attackers had uploaded more than a dozen files. GGRC, a state- and federally-funded nonprofit organization serving individuals with developmental disabilities in Marin, San Francisco and San…
Category: U.S.
Ransomware attack on Hampton Roads Sanitation District knocks out billing system
Robyn Sidersky reports: A ransomware attack on the Hampton Roads Sanitation District’s computer network is affecting all of its customers because the billing system is down. The attack, which occurred on Nov. 17, resulted in the entire network being taken offline, which included suspending the billing system, said HRSD spokeswoman Leila Rice. Read more on…
K12 online schooling giant pays Ryuk ransomware to stop data leak
Lawrence Abrams reports: Online education giant K12 Inc. has paid a ransom after their systems were hit by Ryuk ransomware in the middle of November. K12 creates tailored online learning curriculums for students to learn from home while in kindergarten through 12th grade. Over 1 million students have utilized K12 to learn from home rather…
Statement by Gardiner Public Schools about Ransomware Attack
On November 26, DataBreaches.net reported that two more k-12 districts appeared to have been attacked by ransomware threat actors. One was Spring ISD in Houston, Texas, but DataBreaches.net did not name the other district at the time as they had not confirmed the breach. DataBreaches.net has now received a statement from the Gardiner Public Schools…
River City Bank notifies customers after discovering insider wrongdoing
River City Bank had some explaining to do to customers. As described in their notification, a copy of which was submitted to the California Attorney General’s Office, the bank discovered a problem on September 29. An employee downloaded customer data to a personal storage drive and later sent it to a third party. The download…
Thousands of US lab results and medical records spilled online after a security lapse
Zack Whittaker reports: NTreatment, a technology company that manages electronic health and patient records for doctors and psychiatrists, left thousands of sensitive health records exposed to the internet because one of its cloud servers wasn’t protected with a password. The cloud storage server was hosted on Microsoft Azure and contained 109,000 files, a large portion…