In August 2023, Prince George’s County Public Schools disclosed a cyberattack. At the time, they reported that “an estimated 4,500 user accounts out of 180,000 were impacted, primarily staff accounts. The school system is still assessing the full scope of this incident, but as of this time, the main business and student information systems –…
Ukrainian man pleads guilty in cyberattack that temporarily disrupted major Vermont hospital
AP reports: A Ukrainian man has pleaded guilty to involvement in two separate malware schemes including a cyberattack at the University of Vermont Medical Center in 2020 that temporarily shut down some of its vital services and cost it tens of millions of dollars, according to the U.S. Department of Justice. Vyacheslav Igorevich Penchukov, also…
Zeus, IcedID malware kingpin faces 40 years in slammer
Connor Jones reports: A Ukrainian cybercrime kingpin who ran some of the most pervasive malware operations faces 40 years in prison after spending nearly a decade on the FBI’s Cyber Most Wanted List. Vyacheslav Igorevich Penchukov, 37, pleaded guilty this week in the US to two charges related to his leadership role in both the…
Reward for Information: ALPHV/Blackcat Ransomware as a Service
REWARD OF UP TO $15 MILLION NAME: ALPHV/Blackcat Ransomware as a Service (RaaS) NATIONALITY: Various (Unknown) CITIZENSHIP: Various (Unknown) The U.S. Department of State is offering a reward of up to $10,000,000 for information leading to the identification or location of any individual(s) who hold a key leadership position in the Transnational Organized Crime group behind the ALPHV/Blackcat ransomware variant. In…
‘I am deeply troubled’: Data breach impacts clients at Lanark County family services organization
Austin Lee reports: Family and Children’s Services of Lanark, Leeds and Grenville (FCSLLG) once again finds itself dealing with a privacy breach. At least four people have been contacted by FCSLLG, informing them that they or a child in their care may have been impacted by a “data security incident.” CTV News has obtained a…
Update on INTEGRIS Health data breach: incident response criticized by patients
In December, INTEGRIS Health disclosed a cyberattack in November in which threat actors contacted patients directly to extort them when INTEGRIS wouldn’t pay their demands. DataBreaches subsequently reported additional details. On February 6, INTEGRIS updated its breach notice. The updated website notice incorporates the kind of language that advocates for transparency and data protection may…