As DataBreaches noted yesterday on infosec.exchange, the Medusa ransomware gang claims to have hit Great Valley School District in Pennsylvania. They provide a filetree showing a lot of Skyward, Canvas, PowerSchool, and other internal files, as well as 20+ screencaps of student info and employee info files to support their claim. They are demanding $600k…
MT: Personal information of 900 Butte School District employees compromised in cyberattack
John Emeigh reports: Personal information, including social security numbers, was compromised in a cyberattack on the Butte School District that directly impacted more than 900 school district employees. Butte School Superintendent Judy Jonart said employees have been offered 12 months of free credit monitoring protection. […] School officials first noticed the district’s computer system was…
Pacific Cataract and Laser Institute confirms cyberattack
Pacific Cataract and Laser Institute (PCLI) is dealing with a cyberattack that LockBit claimed responsibility for. An undated notice on its website states that their communications systems and computers have been disrupted by a cyberattack. “Our clinical and surgical equipment is operational and unaffected and we continue to see patients. Although some appointments have…
OAIC alleges Australian Clinical Labs hack resulted from lacklustre security measures
Daniel Croft reports: Australian Clinical Labs (ACL) parent company Medlab back in February 2022 announced that it had suffered a cyber attack at the hands of the Quantum hacking group, which stole 86 gigabytes worth of data belonging to over 200,000 people, which included health information, passport details, and credit card information (number, expiry and…
Proliance Surgeons notifying 437,392 patients after ransomware attack earlier this year
On November 17, Proliance Surgeons notified HHS that 437,392 patients were affected by a breach. An undated notice on their website explains that it was a ransomware attack in which files and systems were encrypted and some data was exfiltrated. “After a thorough forensic investigation, we discovered on May 24, 2023, that additional files may…
After $50 Million Breach, KyberSwap Faces Hacker’s Shocking Demands
Alex Dovbnya reports: The individual claiming responsibility for the hack on KyberSwap, a multi-chain decentralized exchange (DEX) aggregator, has issued a set of astonishing demands through a transaction on the Ethereum blockchain. The hacker, self-identified as “Kyber Director,” is demanding complete executive control over Kyber, the company, and full authority over its governance mechanism, KyberDAO….