Radu Dumitrescu reports: The Saint Gheorghe Recovery Hospital in Botoşani, in northeastern Romania, was the target of a ransomware attack in December, and medical activity is still impacted. Hackers demanded 3 Bitcoin for the decryption of the data on the servers. The attack is similar to the one in the summer of 2019, when four…
Jp: Shibuya officials apologize for disrupted services after apparent cyberattack
NHK reports: The Shibuya Ward office in Tokyo has issued a formal apology after an apparent cyberattack disrupted public services on Wednesday. […] On Tuesday, an international hacker group calling themselves “Anonymous” posted on Twitter that “shibuya municipality closes homeless shelter so we close shibuya municipality website.” Read more at NHK.
ANPD Updates Information Security Incident Notification Guidelines
Cristiane Manzueto, Rodrigo Leal, and Flavia Telles of Mayer Brown write: The Brazilian National Data Protection Authority (ANPD) has published new guidelines on information security incident notifications, which are required whenever an incident is likely to create risks or cause significant damages to data subjects. In summary, here are the new updates: A new form for…
Swansea Public Schools cancel classes Wednesday after ransomware attack
Ryan Mancini reports: Schools canceled classes on Wednesday after the Swansea Public Schools was reportedly struck by a ransomware attack. Superintendent John J. Robidoux informed families on Tuesday that the district’s network was shut down. Read more at MassLive. h/t, Doug Levin
HC3: Analyst Note: Pro-Russian Hacktivist Group ‘KillNet’ Threat to HPH Sector
December 22, 2022 TLP:CLEAR Report: 202212221500 Executive Summary HC3 is closely tracking hacktivist groups which have previously affected a wide range of countries and industries, including the United States Healthcare and Public Health (HPH) sector. One of these hacktivist groups—dubbed ‘KillNet’—recently targeted a U.S. organization in the healthcare industry. The group is known to launch…
Just snarky or dangerous? Ransomware gang cloned victim’s website to leak stolen data
Ionut Ilascu reports: The ALPHV ransomware operators have gotten creative with their extortion tactic and, in at least one case, created a replica of the victim’s site to publish stolen data on it. It appears that ALPHV, also known as BlackCat ransomware, is known for testing new extortion tactics as a way to pressure and shame their…