In 2021, Quest-owned ReproSource Fertility Diagnostics disclosed a ransomware attack in August potentially affecting 350,000 patients. One month after disclosure, they were sued. Now Marianne Kolbasuk McGee reports that there is a settlement. A Massachusetts federal court preliminarily approved the proposed settlement on Wednesday. The proposed class action litigation, which consolidated two similar lawsuits against…
Ransomware wrecks Paraguay’s largest telco
I’ve said it before, and I’ll say it again: If you’re not subscribed to Catalin Cimpanu’s Risky Business Newsletter, you’re missing out. From the newsletter: A ransomware attack has wreaked havoc inside the network of Tigo, the largest mobile operator and internet service provider in Paraguay. The incident took place last Thursday, January 4, and…
Finland warns of Akira ransomware wiping NAS and tape backup devices
Bill Toulas reports: The Finish National Cybersecurity Center (NCSC-FI) is informing of increased Akira ransomware activity in December, targeting companies in the country and wiping backups. The agency says that the threat actor’s attacks accounted for six out of the seven cases of ransomware incidents reported last month. Wiping the backups amplifies the damage of the attack and allows…
US School Shooter Emergency Plans Exposed in Raptor Technologies Data Leak
Matt Burgess reports: Thousands of emergency planning documents from US schools—including their safety procedures for active shooter emergencies—were leaked in a trove of more than 4 million records that were inadvertently made public. Last month, security researcher Jeremiah Fowler discovered 800 gigabytes of files and logs linked to school software provider Raptor Technologies. The firm…
Erie VA Medical Center says it regrets veteran info disclosure
Keith Gushard reports: The Erie VA Medical Center says it regrets any preventable disclosure of sensitive veteran information and takes appropriate action to inform and protect impacted individuals as quickly as possible. The statement, issued Monday, comes almost eight full weeks after a printing error was discovered about the potential disclosure of limited information that…
UK CISO’s are cowing to ransomware demands more than you think, here’s why they shouldn’t pay up
Emma Woollacott reports: One-third of UK-based CISOs have confessed to paying ransomware groups millions of dollars in recent years in a bid to alleviate the impact of an attack, according to new research. Analysis from security firm Trellix found four-in-ten UK CISOs have managed a ransomware attack in the last five years – and in…