NBC2 in Florida reports that SalusCare, a substance abuse and mental health services provider, has disclosed an attack impacting both patient and employee data. According to the news station, SalusCare is not yet certain as to how the attackers gained access, and there is no notice on the entity’s web site as of the time…
Engineer reports data leak to Apperta, hears from the police
Ax Sharma reports another troubling instance of “Shoot the Messenger:” threatening or blaming those who responsibly disclose leaks that they discover. This episode appears to be brought to us via Apperta Foundation. Earlier this month, Dyke had discovered an exposed GitHub repository exposing passwords, API keys, and sensitive financial records which belonged to Apperta Foundation….
NXIVM sex-cult leader Keith Raniere under fire after lawyers accidentally reveal victim names in court docs
Noah Goldberg reports: Convicted sex-cult guru Keith Raniere and his legal team are in hot water for accidentally revealing the names of victims of the NXIVM leader in court documents Tuesday. The feds responded quickly, asking Brooklyn Federal Court Judge Nicholas Garaufis to seal the documents, which he agreed to and which was done early…
Top insurer CNA disconnects systems after cyberattack
Tim Starks reports: CNA, one of the U.S.’s top providers of cybersecurity insurance, is struggling with a cyberattack that prompted it to disconnect its systems from its network. Its website hasn’t been working for the last couple days, and at press time displayed the message, “The attack caused a network disruption and impacted certain CNA…
FBI sends out private industry alert about Mamba ransomware
A Private Industry Alert (PIA) was sent out from the FBI about Mamba ransomware on March 23. As Catalin Cimpanu reports about Alert Number CU-000143-MW The US Federal Bureau of Investigations has sent out this week a private industry notification to US organizations warning about attacks carried out by the Mamba ransomware gang, along with basic instructions…
Coveware censors post after ransomware actors use it for promotion
Sam Varghese reports: Incident response firm Coveware has deleted a small portion of an article it had posted online in 2019, after the actors behind the REvil ransomware group — also known as Sodinokibi — used it to promote the efficiency of their own decryptor over that of the one used by rival ransomware actor,…