There’s an update to the ransomware incident involving Little Rock schools, and it’s not a happy one. The Northwest Arkansas Democrat-Gazette reports that at a school board meeting yesterday, the board authorized paying $250,000 “plus other fees.” The incident was first detected on November 11. A number of issues concerning transparency and compliance with Arkansas…
Search Results for: ransomware
CommonSpirit Health Provides Cyberattack Update and Notification of Data Breach Involving Virginia Mason Franciscan Health in Washington state
There was an update on December 1 to the CommonSpirit ransomware attack that DataBreaches has reported on multiple times already. Press release: On October 2, 2022, CommonSpirit detected activity on its IT network that was later determined to be ransomware. CommonSpirit immediately took steps to secure the network, which included proactively taking certain systems offline, and…
November settlements in some class action lawsuits involving health information
There were several settlements in November involving class action lawsuits against entities where the breach involved protected health information or health data. Here’s a brief recap of them: Ambry Genetics agreed to pay $12.25 million to resolve claims that a 2020 data breach compromised consumer health data and other identifiers. The settlement benefits patients whose…
Bits ‘n Pieces (Trozos y Piezas)
UY: Ministry of Transport and Public Works victim of ransomware attack Uruguay’s Ministry of Transport and Public Works (MTOP) was hit by a ransomware attack on October 17. On November 9, MTOP reported that it was back to normal after the ransomware attack, adding that it had recovered critical information and restored the affected services….
Little Rock School District reports data security incident
Little Rock School District has created a web page about a data security incident detected on Nov. 11. They do not call it ransomware and make no mention of any ransom demand. The only thing they seem to be confident of at this point is that at least some data was exfiltrated, but they say…
Brazilian debt collection firm pays Hive $500k ransom while SuspectFile spectates it all
Marco A. De Felice (aka @amvinfe) had a bird’s eye view of negotiations between a Brazilian credit recovery and financial solutions firm and the Hive ransomware team. He also got to track the victim’s payment over wallets. Reading his partial transcript from the negotiations, the victim quickly went from an offer of $50k — an…