There is an update to a story posted on DataBreaches in 2021 about a scary-sounding attempt to hack and control the water treatment plant in Oldsmar, Florida. Today, Chris Teale reports that no, it wasn’t that at all. It was just an employee clicking on some wrong buttons before he informed his supervisor of his…
Attacked by Vice Society earlier this month, Lewis & Clark finds files with personal information have now been leaked
It appears that Lewis & Clark in Oregon has been the victim of a ransomware attack by Vice Society. An urgent notice on the college’s website currently says: Urgent LC Alert: Campus phone service and PioNet Guest Wifi are working. If you are unable to reach Campus Safety at 503-768-7777, call the backup number at…
Bits ‘n Pieces (Trozos y Piezas)
ES: Secondary education center hit by Stormous After several months out of the public eye, the pro-Russian Stormous Ransomware group reappeared in February. Now they have claimed an attack on a secondary education center, the Instituto De Educación Secundaria Ies Emilio Canalejo Olmeda (IESCO) in Cordoba, Spain. On March 30, Stormous listed the entity in…
Guam Memorial Hospital under review for potential HIPAA breach
Matsuki Hirayama reports: The unauthorized access into Guam Memorial Hospital’s network is undergoing a detailed review for a possible Health Insurance Portability and Accountability Act or HIPAA breach. The information came to light during the public hospital’s monthly board meeting Wednesday. GMH legal counsel Jeremiah Luther maintains that no patient or employee records were compromised, saying they got lucky….
US commits $25 million to Costa Rica for Conti ransomware recovery
Jonathan Greig reports: The U.S. government is sending $25 million to the government of Costa Rica to help the country recover from a devastating ransomware attack last year that crippled several key agencies. In May 2022, Costa Rica’s newly elected president Rodrigo Chaves declared a state of emergency after the now-defunct Conti ransomware group severely damaged the Ministry of…
3CX knew its app was flagged as malicious, but took no action for 7 days
Dan Goodin reports: The support team for 3CX, the VoIP/PBX software provider with more than 600,000 customers and 12 million daily users, was aware its desktop app was being flagged as malware, but decided to take no action for a week when it learned it was on the receiving end of a massive supply chain attack,…