FBI Private Industry Notification TLP:CLEAR November 7, 2023 Summary The Federal Bureau of Investigation (FBI) is releasing this Private Industry Notification to highlight ransomware initial access trends and encourage organizations to implement the recommendations in the “Mitigations” section to reduce the likelihood and impact of ransomware incidents. Threat As of July 2023, the FBI noted…
Marina Bay Sands reveals data breach affecting 665,000 customers
AFP reports: A luxury resort operator in Singapore said today that the personal data of about 665,000 members of its shopping loyalty programme had been hacked. The breach of Marina Bay Sands was the latest in a string of major cybersecurity incidents reported in the city-state. […] Marina Bay Sands, which is owned by US…
Info from 5.6 million patient visits among data stolen in ransomware attack on Ontario hospital
Kathleen Saylors and Jennifer La Grassa report: A database containing information on 5.6 million patient visits to Bluewater Health and the social insurance numbers of as many as 1,446 Chatham-Kent Health Alliance employees are among the data taken in the ransomware attack on five southwestern Ontario hospitals, officials said in a lengthy update Monday. […] According to…
HC3: Analyst Note: BlackSuit Ransomware
November 6, 2023 TLP:CLEAR Report: 202311061700 Executive Summary A relatively new ransomware group and strain known as BlackSuit, with significant similarities to the Royal ransomware family, will likely be a credible threat to the Healthcare and Public Health (HPH) sector. Discovered in early May 2023, BlackSuit’s striking parallels with Royal, the direct successor of the…
Mulkay Cardiology Consultants notifies almost 80,000 of ransomware attack
On Friday, Mulkay Cardiology Consultants at Holy Name Medical Center (“Mulkay”) notified the Maine Attorney General’s Office of an incident they discovered at the beginning of September. According to their report, a total of 79,582 people were affected by the breach. A copy of their notification letter to patients, appended to the submission, explained that…
Cardiovascular Consultants (CVC Heart) allegedly hit by ransomware (1)
Cardiovascular Consultants LTD (CVC Heart) in Arizona may or may not have been the victim of a ransomware attack, but they have not responded to inquiries about that. So far, all we have are unsubstantiated claims by a ransomware group and an alleged data archive download that doesn’t download. On October 25, Cardiovascular Consultants LTD…