Charles Gorrivan and Brody Ford report: Snowflake Inc. plans to close its own investigation this week into a hacking campaign that ensnared as many as 165 of its customers. The cloud data and analytics company hasn’t detected any unauthorized access into customer accounts since early last week, Chief Information Security Officer Brad Jones, said in an interview with Bloomberg News….
Special Health Resources’ “technical difficulties” are due to a ransomware attack
Although some threat groups or affiliates have sworn off attacking the medical sector with ransomware, not all have. On Sunday evening, June 2, Special Health Resources (“SHR”) posted a notice on their Facebook account: We are currently experiencing technical difficulties and on Monday, our health centers will only see patients who are actively sick. All…
Federal criminal investigation involving Perry Johnson & Associates data breach
The Perry Johnson & Associates (PJ&A) data breach was the biggest reported breach involving protected health information in 2023, with more than 13 million patients affected1. Now WBEZ in Chicago reports that there is a federal criminal investigation related to the breach at the medical transcription service. Federal authorities are conducting a criminal investigation into…
Developing: BreachForums down, ShinyHunters’ and forum Telegram channels deleted?
Something seems to be up — or down, to be more accurate. BreachForums clearnet and onion sites are down, with the clearnet site returning a “502- Bad Gateway” response. A WhoIs lookup for BreachForums.st shows the name servers as ddos-guard.net. That is the domain used by ShinyHunters for the forum, so the government does not…
RansomHouse: investigation and findings by Analyst1
Analyst1 has published a report on RansomHouse: RansomHouse: Stolen Data Market, Influence Operations & Other Tricks Up the Sleeve. The Executive Summary of the report by Anastasia Sentsova begins: This research aims to identify connections between RansomHouse, and other groups based on the investigation of multiple crossclaims of victims. Emerging after the Babuk source code…
70,000 Adventist Health Tulare patients being notified of HIPAA breach by payment collections associate
Adventist Health Tulare has issued a press release about a breach at a business associate in Nebraska. The June 7 press release states, “A data security incident was recently discovered by Signature Performance, an agency working on behalf of Adventist Health Tulare to collect payment for services.” Their investigation determined that an unknown party accessed…