Unique Imaging, Inc. has three locations in Florida: Aventura, Biscayne, Miami, and Dadeland. If you were to visit their website today, you wouldn’t see any sign of anything amiss, but appearances can be deceiving. A ransomware group claims that they have been living in Unique Imaging’s network for months and helping themselves to patient data…
Medusa ransomware group starts leaking data from Crown Princess Mary Cancer Centre; threatens to leak more
Ellen Whinnet reports: A ransomware gang is claiming to have breached a Sydney cancer hospital, and is threatening to release data unless payment is made. NSW Health confirmed it was aware of the threats made against the Crown Princess Mary Cancer Centre at Westmead Hospital, and was investigating. The global ransomware gang Medusa posted on…
City of Dallas impacted by ransomware attack
Lori Brown reports: The City of Dallas is dealing with a ransomware attack that has infected its servers, limiting the delivery of City service. The city says security monitoring tools first spotted the attack on Wednesday morning. Read more at Fox4. Update: It looks like the Royal Ransomware gang is responsible for this one.
Persistent attackers: Eurasia Group believes it has been dealing with the same attackers since 2020
Some attackers are harder to kick out and keep out. From a notification letter to a state attorney general’s office by external counsel for Eurasia Group, a consulting firm in New York: In December 2020, Eurasia Group discovered suspicious activity within its email system. Eurasia Group immediately launched an investigation, with the assistance of third-party…
Brightline continues notifying clients of GoAnywhere incident; count continues to rise (more than 1 million)
Updated May 3: When DataBreaches checked Clop’s leak site today, the listing for Brightline was gone. Whether this means that they paid Clop to get it removed, or if its removal is just temporary remains to be seen. But out of all the health-related Fortra clients this site reported on in April, the Brightline listing…
TN: Murfreesboro Medical Clinic remains closed due to cyberattack
Update of May 6: Although neither the clinic nor the attackers have confirmed it yet, this attack appears to be the work of BianLian, whose obfuscated description on their leak site matches Murfreesboro’s description. BianLian claims to have over 250 GB of files. Carmyn Gutierrez and Caleb Wethington report: The Murfreesboro Medical Clinic & SurgiCenter was…