On June 13, the INC Ransom group added Maryhaven in Ohio to their leak site. DataBreaches subsequently contacted Maryhaven to inquire what it was doing in response to INC’s claims. They did not reply, but subsequently posted a notice on their website that said, in part: We are aware that some of our systems are…
Consulting Radiologists LTD notifying 583,824 patients about February attack
Two ransomware groups claimed to have attacked Consulting Radiologists. The notification is silent about any ransom demands. Consulting Radiologists LTD. (“CRL”)” in Minnesota is a physician-owned practice. On February 12, 2024, they detected suspicious activity on their network. An investigation revealed that an unauthorized actor had accessed certain files and data. Those files contained patient…
FTC Defends Investigation Into Cyberattack on MGM as Casino Giant Seeks to Block Probe
Maydeen Merino reports: The Federal Trade Commission this week defended its investigation of MGM Resort International’s data security practices as the Las Vegas-based casino is seeking a court order to block the agency’s probe. Following a cyberattack that disclosed the personal information MGM guests in September, the FTC issued a civil investigative demand (CID) in…
Impact of Tennessee’s Cybersecurity Class Action Safe Harbor
Here are some perspectives by law firms. From SheppardMullin: Tennessee has joined a handful of other states to provide certain safe harbors in the cybersecurity realm. Unlike others, the law sites beside -but does not modify- the states’ data breach notification law. Also unlike others, the safe harbor is very narrowly tailored, and is not triggered by…
Ph: Arrested Data Security Officer Admits To Hacking 93 Websites
Mark Ernest Villeza reports: A data security officer of the Manila Bulletin has admitted to hacking approximately 93 websites, including government and private company websites, as well as servers based abroad. In an interview with ABS-CBN aired on June 24, the hacker with the alias “Kangkong” revealed that he left a specific picture on the compromised websites as…
Social Engineering Tactics Targeting Healthcare & Public Health Entities and Providers
June 24, 2024 TLP:CLEAR SUMMARY The Federal Bureau of Investigation (FBI) and the Department of Health and Human Services (HHS) are releasing this joint Cybersecurity Advisory (CSA) to disseminate known indicators of compromise (IOCs) and tactics, techniques, and procedures (TTPs) used in a social engineering campaign targeting healthcare, public health entities, and providers. Threat actors…