In May of 2021, San Diego Family Care disclosed a data breach that resulted from a ransomware attack on their hosting provider, Netgain Technology. In a class action lawsuit, complainants alleged that SDFC failed to protect patients’ information adequately and that SDFC did not promptly notify patients after learning of the breach. The lawsuit has…
Search Results for: ransomware
Sg: PDPC issues monetary penalty in the matter of the Vhive cyberattack
One of the many hacks this site reported on in 2021 was the attack on Vhive in Singapore by threat actors calling themselves ALTDOS. The attack resulted in what the threat actors claimed was hundreds of thousands of the furniture retailers’ customers having their personal information leaked when the firm refused to pay the attackers’…
ALPHV threat actors claim to have attacked Plainedge Public Schools
ALPHV threat actors (also known as BlackCat) have added a Long Island school district to their leak site: Plainedge Public Schools. The ransomware group has not started leaking any databases, but warns the district that they will if they do not hear from them. The district consists of the Charles E. Schwarting Elementary School,…
Personal and sensitive files from Tehama County Social Services leaked on dark web. Have the victims been notified?
On their dark web blog, Quantum threat actors claim to have acquired 32 GB of files from Tehama County Social Services in California. Quantum describes the files as involving information of county clients and employees: Financial information, budgets, fiscal docs, contracts, HR data, resumes, payrolls, clients personal data, scans ID, scans SSN, personal info, scans…
LockBit tries to get media’s attention for their response to a Mandiant analysis
One of the most hated threat intel companies in the world is Mandiant, and they are hated because they are often right. But this week, LockBit decided to respond in a somewhat different way to one of Mandiant’s recent claims. The ransomware group published a notice on their leak site yesterday saying that 356,841 files…
Pysa shuttered its leak site before it ever dumped data from more than half a dozen schools. Here’s what we know so far.
The education sector has always been a relatively easy target for cybercriminals. One group in particular — Pysa — earned a reputation for its ransomware attacks on schools. Despite analyses and alerts in March, 2021 by threat intel firms and the U.S. government indicating that Pysa was a major threat to the education sector in…