For a brief period yesterday, visitors to Hive ransomware’s leak site would have seen Partnership HealthPlan of California listed. According to the listing, the threat actors claim to have exfiltrated 850,000 unique records with name, Social Security Number, date of birth, address, contact information, and more. Hive claimed that they had 400 GB of stolen…
Search Results for: ransomware
CA: North Orange County Community College District updates students and faculty on breach
Add North Orange County Community College District (NOCCCD) to any list you may be Curating of colleges that have suffered breaches. According to a report from the college, beginning on December 7, 2021, an unauthorized individual accessed the networks of both Cypress College and Fullerton College and may have exfiltrated copies of files. The attack…
IL: Blessing details defenses amid increasing health system cyber-attacks
Ryan Hill reports: Hospitals and health systems are finding themselves in the crosshairs of cybercriminals more frequently. According to third party cybersecurity company Black Kite’s 2021 Third Party Breach report, attacks on healthcare companies accounted for nearly a third of attacks in 2021. Blessing Health information security chief Todd Haverstock said he has seen the number…
In Act of Hacktivism, Open Source Project Maintainer Uses Code to Wipe Russian and Belarusian Computers
Scott Ikeda reports: Many criminal hacking gangs originate from Russia and nearby points in Eastern Europe, and their ransomware and malware is sometimes found with settings that automatically disable it if regional languages are set on the target computer. An open source project maintainer essentially did the opposite in protest of the war in Ukraine,…
TX: Val Verde Regional Medical Center patient data dumped by LockBit
Val Verde Regional Medical Center (VVRMC) appears to have been the victim of a ransomware attack involving LockBit. According to LockBit, Val Verde Memorial Hospital was compromised and 96,000 patient records were exfiltrated. The listing was added to the leak site on March 16, with LockBit noting that the patient records had the following table…
Threat actors leak data from Scottish Association for Mental Health
It appears that RansomExx threat actors have hit the Scottish Association for Mental Health (SAMH). On March 18, SAMH posted a notice on its website. The full notice says it was dealing with an “I.T incident, which is affecting our colleagues’ ability to receive and respond to emails across both our national and local service…