In January, the BianLian ransomware group added an unnamed medical group to their leak site. In February, they also posted a teaser on their BreachForums account. Although neither listing named the victim, DataBreaches was able to figure out that it was the Northeast Surgical Group (“NESG”) in Michigan. DataBreaches reached out to them multiple times,…
Council of Granada database was sold by hacker. Should anyone be concerned?
The Council of Granada is a public entity providing direct services to citizens as well as technical, economic, and technological support to the city councils of the municipalities of the province of Granada, Spain. On December 29, 2022, the group known as “GhostSec” listed a Granada Council database at dipgra.es for sale, claiming they had…
ANOTHER Acer Data Breach? Hacker Claims to Sell 160GB Trove of Stolen Data
Waqas reports: Acer Inc., a major global technology company based in Taiwan, is facing a potential data breach from a hacker going by the alias “Kernelware.” The hacker is claiming responsibility for a major data breach at Acer Inc., a leading multinational company based in Taiwan that designs and sells hardware and electronics products. According to…
Ie: Data Protection Commission publishes 2022 Annual Report
Commissioner for Data Protection, Helen Dixon, has today launched the Irish Data Protection Commission’s Annual Report for 2022. Highlights of the 2022 Annual report include: The DPC concluded 17 Large-Scale inquiries, with administrative fines in excess of €1billion and multiple reprimands and compliance orders imposed. Additionally, as at 31 December 2022, 4 DPC draft decisions…
Israel publicly blames Iran for cyberattack on major university last month
Times of Israel reports: The Israel National Cyber Directorate announced Tuesday that a group affiliated with Iranian intelligence was behind an internet attack last month on the Technion, a top Israeli research and education institute. In a statement, the directorate said an investigation found the attack was carried out by a group known as MuddyWater,…
Medusa claims responsibility for Minneapolis Public Schools’ “encryption event,” provides proof of how much data they accessed
There’s another update to the “encryption event” first disclosed by Minneapolis Public Schools (MPS) in February. As of their most recent last update, MPS had stated that they had been able to restore systems and no ransom had been paid. At that time, DataBreaches had not found any gang claiming responsibility for the breach or…