The Sodinokibi (“REvil”) threat actors have added Betenbough Homes to their dark web leak site where they post files from victims who have not paid their extortion demands. In the case of Betenbough, the attack was just added today to REvil’s site, but the breach occurred on May 3. The most recent statement from the…
Ca: Accused Netwalker affiliate facing extradition on ransomware charges denied release
Matthew Kupfer reports that Sébastien Vachon-Desjardins has been denied release while he awaits his extradition hearing. According to a document from the RCMP, authorities seized hundreds of thousands of dollars from Vachon-Desjardins’s home and safety deposit boxes after his arrest, while also discovering a cryptocurrency wallet with contents valued at about $50 million. Read more on…
HSE hack: High Court grants orders barring use of stolen data
Mary Carolan reports: All of the HSE’s data “is potentially compromised” following a massive cyberattack, its chief executive, Paul Reid, has told the High Court. […] …. the HSE applied for orders, granted by Mr Justice Kevin Cross, restraining persons unknown, and any persons with knowledge of the orders, from sharing, selling, publishing, processing or…
Hackers Offer Decrypt Key to Irish Health Service With a Catch
Ryan Gallagher and Peter Flanagan of Bloomberg report: A day after threatening to publicly release patient data, the hackers who targeted Ireland’s health service offered a decryption key that they said could be used to unlock computers infected with ransomware. While seeming to offer an olive branch — sharing a link to download the decryption…
Update: Rehoboth Mckinley Christian Health Care Services notified 209,000 patients of February ransomware incident
On February 16, DataBreaches.net reported that Conti threat acctors had apparently attacked Rehoboth Mckinley Christian Health Care Services, Inc (RMCHCS) in New Mexico. As it has done in similar attacks, the threat actors dumped a small sample of files as proof. The files include copies of handwritten injury reports and other reports related to named individuals’…
Update: Nocona General Hospital “recently” learned of a breach we reported in early February
On February 4, DataBreaches.net reached out to Nocona General Hospital (NGH) in Texas about an attack claimed by Conti threat actors the previous day. The hospital did not respond. On February 7, this site emailed NGH, writing, in part, “I see that Conti threat actors have dumped files that they claimed they copied and stole…