Stefanie Schappert reports: The Qilin ransomware group said it is responsible for the February 10th hack of a prestigious cancer treatment center in Japan, exposing the sensitive health information of 300,000 patients and leaving its hospital system “unusable.” The Utsunomiya Central Clinic (UCC) cancer treatment center first alerted the public to the ransomware attack on…
FTC, MGM close to solving dispute over costly 2023 cyberattack
Richard N. Velotta reports: The Federal Trade Commission’s dispute with MGM Resorts International over providing information about 2023’s costly cyberattack against the company may be coming to a resolution. The FTC has told MGM it plans to withdraw its civil investigative demand regarding the incident that cost the company an estimated $100 million and crippled the company’s…
Info accessed in Rainbow board data breach ‘deleted and has not been shared’
Sudbury.com reports: Data acquired by unauthorized individuals during Rainbow District School Board’s recent cyber incident “was deleted and has not been shared,” according to an update on the situation from the school board. The school board also said in the Feb. 28 statement that three weeks after the cyber incident, which meant internet was unavailable…
FBCS updates the number affected in its 2024 breach to 4,253,394
Lawrence Abrams reports: Debt collection agency Financial Business and Consumer Solutions (FBCS) has again increased the number of people impacted by a February [2024] data breach, now saying it affects 4.2 million people in the US. … The exposed data varies per individual but can include the following information: Full name Social Security Number (SSN)…
Black Basta exposed: A look at a cybercrime data leak and a key member, “Tramp”
Intel471 reports: On Feb. 11, 2025, a mysterious leaker going by the Telegram username ExploitWhispers released one year’s worth of internal communications between members of the Black Basta ransomware group on a Telegram channel. Black Basta is still active in a reduced capacity, but in 2022, it was the third most impactful ransomware group. Its members appeared to be experienced…
Data Breach Class Action Dismissed After ‘Alter Ego’ Doctrine Fails
Colleen Murphy reports that a potential class action lawsuit that relied on a legal strategy called the “alter ego doctrine” has been dismissed. Since DataBreaches is not a lawyer and has never heard of this doctrine before, Murphy’s coverage makes for an interesting read. She reports: A group of optical companies secured the dismissal of…