Bill Toulas reports: A hacking group tracked as ‘Asylum Ambuscade’ was observed in recent attacks targeting small to medium-sized companies worldwide, combining cyber espionage with cybercrime. The particular threat group, believed to have been operational since at least 2020, was first identified by Proofpoint in a March 2022 report that focused on a phishing campaign against entities…
Thousands of students’ data breached in Minnesota Department of Education hack
Hayley Raatis reports that about 95,000 students have been affected by the MOVEit file transfer breach that also affected the Minnesota Department of Education. The initial investigation found 24 files were accessed due to the vulnerability. These files included data transferred to MDE from the Minnesota Department of Human Services (DHS) to meet state and…
Russian Nationals Charged With Hacking One Cryptocurrency Exchange and Illicitly Operating Another
The Justice Department unsealed charges related to the 2011 hack of the cryptocurrency exchange Mt. Gox and the operation of the illicit cryptocurrency exchange BTC-e. According to court documents, Alexey Bilyuchenko, 43, and Aleksandr Verner, 29, both Russian nationals, are charged with conspiring to launder approximately 647,000 bitcoins from their hack of Mt. Gox. Bilyuchenko…
Intellihartx notifies 490,000 patients of Fortra/GoAnywhere breach (with updates)
Quick update: Intellihartx LLC in Tennessee is notifying 489,830 of its clients’ patients about the Fortra/GoAnywhere breach by Clop. The types of information that may have been compromised include name, address, medical billing and insurance information, certain medical information such as diagnoses and medication, and demographic information such as date of birth and Social Security…
Another hospital hit by ransomware: Columbus Regional Healthcare System in North Carolina hit by Daixin
Columbus Regional Healthcare System (CRHS) is a non-profit organization in North Carolina licensed for 154 beds. The Daixin ransomware group claims that on May 18, they encrypted the hospital’s servers after exfiltrating data and deleting backups. A Ransom Demand and Failed Negotiations A spokesperson for Daixin tells DataBreaches that three days after they encrypted the…
Au: Hackers Follow Through with Dark Web Threat After Law Firm Rejects Ransom
GVS reports: A hacking group claiming to be Russian-linked cybercriminals has published sensitive data from one of Australia’s largest law firms, HWL Ebsworth, after the firm refused to pay their ransom demands. The AlphV ransomware gang, also known as BlackCat, announced on the dark web that it had released 1.45 terabytes of data allegedly stolen…