On June 28, DataBreaches received a message from an unrecognized sender. The subject was: “Breach of Marriott hotels! Very Important!” DataBreaches’ first thought was, “Seriously? Is this yet another breach involving Marriott or are some kids just trying to leak old data?” As it turned out, this was, in fact, a new breach. But how…
AstraLocker ransomware shuts down and releases decryptors
Sergiu Gatlan reports: The threat actor behind the lesser-known AstraLocker ransomware told BleepingComputer they’re shutting down the operation and plan to switch to cryptojacking. The ransomware’s developer submitted a ZIP archive with AstraLocker decryptors to the VirusTotal malware analysis platform. Read more at BleepingComputer.
Cyberattack suspends Cedar Rapids summer school activities
The Gazette reports: A cyberattack discovered over the holiday weekend has caused the Cedar Rapids Community School District to suspend summer programming until July 11, the district said. Its announcement did not describe the nature of the attack or say which systems it targeted. Read more at The Gazette.
Update on Plainedge School District ransomware attack
On June 15, DataBreaches reported that BlackCat threat actors had added Plainedge School District in New York to their dedicated leak site. At the time, BlackCat (aka ALPHV) only offered a few files as proof but warned more data would be leaked if they did not hear from the district. The threat actors subsequently dumped…
UK: Thousands of students have data leaked on dark web by Vice Society
Kevin O’Sullivan and Michael Powell report on attacks by the ransomware team known as Vice Society on U.K. schools. Student data was disclosed on Vice’s dedicated leak site after their victims refused to pay ransom demands. The Daily Mail report includes Vice’s attacks on five schools and a sixth-form college, including Pilton Community College, The…
Jp: Information of 111,191 patients and 715 employees at Kokikai Yasue Hospital leaked
Tatsuki Matsuura reports on what sounds like it might be a ransomware attack. Here’s a machine translation of how the report begins: Kokikai Yasue Hospital (Gifu City, Gifu Prefecture) announced on July 4 that the personal information of patients and new Corona vaccine vaccinated patients may have been leaked up to 111,991 due to unauthorized…