DataBreaches has learned that Tift Regional Medical Center in Georgia was the victim of a ransomware attack in July. Although the hospital was negotiating with the Hive ransomware group, negotiations recently broke off. According to communications shared exclusively with DataBreaches, the breach started on July 14 and ended on August 8. During that time, Hive…
Scoop: VSS Medical Technology’s Terrible, Horrible, No Good, Very Bad Day
DataBreaches suspects that most readers would agree that getting hit by a ransomware gang qualifies your day as a very bad day. But how about getting hit by two different ransomware gangs on the same day? VSS Medical Technology and one of their companies, Sigmund Software, had what sounds like a terrible, horrible, no good,…
Indonesia finally passes personal data protection law
Eileen Yu reports: Indonesia finally has passed its personal data protection law that has been in discussions since 2016. The government believes the new Bill will be critical amidst a spate of data security breaches in the country. Indonesia’s House of Representatives earlier this month approved the Personal Data Protection (PDP) Bill, paving the way…
Gag order issued to stop release of information stolen by hackers
The Tirana Times reports: With publication on the web of documents stolen by Iran-linked hackers from Albanian State Police servers, the Prosecutor’s Office of Tirana has ordered media to stop publishing any stories sourced from data published by the authors of the cyberattack. Many Albanian media say the order amounts to censorship, a stance backed…
Uber links breach to Lapsus$ group, blames contractor for hack
Sergiu Gatlan reports: Uber believes the hacker behind last week’s breach is affiliated with the Lapsus$ extortion group, known for breaching other high-profile tech companies such as Microsoft, Cisco, NVIDIA, Samsung, and Okta. The company added that the attacker used the stolen credentials of an Uber EXT contractor in an MFA fatigue attack where the contractor was flooded with two-factor authentication (2FA)…
Revolut hit by ‘phishing’ cyberattack
Ben Martin reports: A cyberattack on Revolut has compromised the personal details of more than 50,000 people. The breach at the app-based payments company occurred last Sunday night after a Revolut employee was caught out by a phishing scam. The attack has affected 50,144 people and involved an unauthorised third-party accessing some of their details,…