In May 2021, Sierra College in California confirmed that it was hit by a ransomware attack. Whatever steps the college may have taken to prevent another ransomware attack were apparently not sufficient, however, because Vice Society added the college to its list of “partners” this week. Vice did not post any data at this point,…
Wolfe Clinic notifies patients of Eye Care Leaders breach
I tweeted this yesterday, but probably should note it here too: When I saw Wolfe Clinic had reported a breach to HHS impacting 542,776 patients, I thought they had just updated their 500k figure from the ransomware attack by Lorenz last year. But it turned out that this was a new, and unrelated report due…
LockBit ransomware builder leaked online by “angry developer”
Lawrence Abrams reports: The LockBit ransomware operation has suffered a breach, with an allegedly disgruntled developer leaking the builder for the gang’s newest encryptor. In June, the LockBit ransomware operation released version 3.0 of their encryptor, codenamed LockBit Black, after testing it for two months. […] Regardless of how the private ransomware builder was leaked, this…
ALPHV/BlackCat ransomware family becoming more dangerous
Alex Scroxton reports: The developer or developers behind the ransomware-as-a-service (RaaS) family known variously as ALPHV, BlackCat and Noberus, have been hard at work refining their tactics, techniques and procedures (TTPs) and today are probably more dangerous than ever before, according to intelligence from Symantec. The ALPHV/BlackCat/Noberus operation – which Symantec tracks as Coreid (aka FIN7, Carbon Spider)…
SIM Swapper Abducted, Beaten, Held for $200k Ransom
Brian Krebs reports: A Florida teenager who served as a lackey for a cybercriminal group that specializes in cryptocurrency thefts was beaten and kidnapped last week by a rival cybercrime gang. The teen’s captives held guns to his head while forcing him to record a video message pleading with his crew to fork over a…
UK: Six UK schools hit by cyberattack on multi-academy trust
Matthew Gooding reports: A cyberattack on a multi-academy trust which runs schools serving 4,500 pupils has left staff without access to digital systems for more than a week, Tech Monitor understands. The Scholars’ Education Trust suffered the breach last week, and at the time of writing many of its internal systems remain offline. The trust runs six schools in…