It seems that every day, we learn of more ransomware attacks on healthcare entities. Here are two more. Arizona: Cochise Eye and Laser The most recent update to HHS’s public breach tool included an incident reported by RF Eye, P.C., dba Cochise Eye and Laser. On February 17, the Arizona entity posted a notice on…
UK: 15 schools in Nottinghamshire crippled by cyber attack
Bobby Hellard reports: Schools across Nottinghamshire have had to shut down their IT networks after a central trust that manages their systems was hit by a cyber attack. All 15 secondary schools that are part of the Nova Education Trust are currently unable to access emails or their websites, and are still unable to conduct lessons remotely. Read more on…
Elite Cybercrime Forum “Maza” Breached by Unknown Attacker
Wow. From Flashpoint, yesterday: On March 3, 2021, Flashpoint detected a breach of the elite Russian cybercrime forum known as “Maza” (originally called “Mazafaka”). This breach follows recent attacks (both attempted and successful) on other Russian cybercrime forums, including the takeover of Russian-language forum Verified. Known to be in operations as far back as 2003, Maza…
Court Upholds Insurers’ Denial of $6M Crime Claim for Phishing Loss
Andrew G. Simpson reports: Real estate software maker RealPage has been denied a $6 million computer crime insurance coverage claim because the stolen funds were not in its possession but were instead being held by a payment processing firm at the time of a phishing scheme. National Union Fire Insurance Co. (a unit of American…
The Accellion breach also impacted Qualys; threat actors start dumping files
As I noted yesterday on Twitter, Qualys was added to threat actor CLOP’s leak site, raising the question as to whether the firm had been an Accellion client. They had. Qualys issued a statement later yesterday. It said, in part: Qualys has confirmed that there is no impact on the Qualys production environments, codebase or…
Indian state government website exposed COVID-19 lab test results
Zack Whittaker covers a data leak first reported by BleepingComputer. You can read TechCrunch’s report on the incident here.