Jurgita Lapienytė reports: On November 16, an actor posted an ad on a well-known hacking community forum, claiming they were selling a 2022 database of 487 million WhatsApp user mobile numbers. The dataset allegedly contains WhatsApp user data from 84 countries. Threat actor claims there are over 32 million US user records included. Another huge…
Update: Norman Public Schools’ employee and student leaked on dark web by ransomware gang
On Nov 4, DataBreaches noted that Norman Public Schools (NPS) in Oklahoma reported what they described as a “malicious ransomware attack.” Since then, the district has worked to restore all services. Because the district did not respond to the threat actors’ ransom demands, this week the Hive ransomware team publicly claimed responsibility for the attack…
Community Health Network notifies patients of meta pixel breach
Community Health Network in Indiana has become the latest healthcare entity to notify patients that their protected health information was transmitted via trackers on their website from Google and Meta. Their FAQ page attempts to explain it in basic English and does a good job, but there’s no getting around this: Any individual who visited…
Ca: OSSTF victim of ransomware attack, notifies members of personal data compromised
The Canadian Press reports: The union representing public high school teachers in Ontario says it was the victim of a ransomware attack earlier this year that compromised members’ personal information. The Ontario Secondary School Teachers’ Federation says it discovered in late May that an “unauthorized third party” accessed and encrypted its systems between May 25…
In: Ransomware suspected as AIIMS servers go down, trigger long waits
Soumya Pillai reports: A suspected ransomware attack hit servers at the All India Institute of Medical Sciences (AIIMS) on Wednesday, leading to long waits for patients as registrations, sample processing and billing as computers went down. According to doctors, services for out-patient (OPD) and in-patient (IPD) departments were affected since 7am on Wednesday, halting all…
HC3 Alert on Lorenz Ransomware
HC3 has issued an alert about Lorenz ransomware. Lorenz threat actors have been mentioned on DataBreaches’ site several times since 2021. In one case they attacked and exfiltrated data of 500,000 patients of Wolfe Clinic in Iowa, and they recently posted data from Salud Family Health in Colorado. Salud has not yet reported a number…