Two medical entities appear to have recently fallen prey to attacks using BlackByte’s ransomware, and both entities have now had some of their data leaked on BlackByte’s dedicated leak site. Lamoille Health Partners Lamoille Health Partners in Vermont serves the Lamoille County community’s healthcare needs. As such, they provide a range of comprehensive services that…
SiegedSec continues #OpJane efforts
On June 26, DataBreaches reported that hacktivists calling themselves SiegedSec claimed to have attacked government servers in Arkansas and Kentucky to protest those states’ abortion bans. As noted at the time, the “attacks” seemed mostly symbolic, as neither server contained any information related to the abortion issue or laws and was all publicly available. Yesterday,…
Graff paid £6m ransom fee to Conti, now sues Travelers for refusing to reimburse
Sam Lewis reports: It has been revealed that high-end British jeweller Graff paid out a ransom fee topping £6 million in a well-publicised cyber attack last year. It emerged in November 2021 that Graff had been the target of Russian hackers who had gained possession of data pertaining to many of Graff’s high-profile customers. The incident is…
More details emerge on Professional Finance Company ransomware incident, but questions remain
A ransomware attack on Professional Finance Company (PFC) has some of us who track breaches in the healthcare sector wondering how large this breach will be. The last time we saw a big breach involving a collection agency was in 2019. The American Medical Collection Agency filed for bankruptcy pretty quickly and the total number…
Pt: Hacker targets Lisbon hotel clients
The Portugal News reports: A hacker has infiltrated the Booking account of the Marino Boutique Hotel in Lisbon, and has managed to steal almost half a million euros in false bookings. According to CNN Portugal, the hacker established direct contact with hundreds of customers between 12 and 16 June, leaving the hotel without being able…
Pentester says he broke into datacenter via hidden route running behind toilets
Dan Robinson reports: Many security breaches involve leaks, but not perhaps in the same way as one revealed by noted security consultant Andrew Tierney, who managed to gain unauthorized access to a datacenter via what he delightfully terms the “piss corridor.” Tierney, who works as a consultant for security services outfit Pen Test Partners, revealed in…