Ionut Ilascu reports: Ragnarok ransomware gang appears to have called it quits and released the master key that can decrypt files locked with their malware. The threat actor did not leave a note explaining the move and all of a sudden replaced all the victims on their leak site with a short instruction on how…
Crooks use name of Europol boss for phishing mail
Alan Hope reports: The Computer Crime Unit of the federal police is investigating a case of identity theft involving Catherine De Bolle, the executive director of the EU’s law enforcement agency Europol. Despite De Bolle having taken the new job in 2018, the case appears to be centred on Belgium. Police have received hundreds of…
California DOJ Must Be Notified About Breaches of the Health Data of 500 or More California Residents
HIPAA Journal reminds us all that states can require notification to the state of breaches that are also covered by HIPAA and can take enforcement action if they are not reported: Recently, there have been several instances where the California DOJ has not been notified about ransomware attacks on California healthcare facilities, even though the…
Nearly 73,500 patients’ data affected in ransomware attack on eye clinic in Singapore
Kenny Chee reports: A ransomware attack earlier this month has affected the personal data and clinical information of nearly 73,500 patients of a private eye clinic, the third such reported incident in a month. The information included names, addresses, identity card numbers, contact details and clinical information such as patients’ clinical notes and eye scans,…
Man Robbed of 16 Bitcoin Sues Young Thieves’ Parents
Brian Krebs reports: In 2018, Andrew Schober was digitally mugged for approximately $1 million worth of bitcoin. After several years of working with investigators, Schober says he’s confident he has located two young men in the United Kingdom responsible for developing a clever piece of digital clipboard-stealing malware that let them siphon his crypto holdings….
Fresno Unified School District notifying people after discovering backup device with names and SSNs was missing
The Fresno Unified School District experienced a breach when they discovered in March that specific storage media used to perform computer backups was missing from storage. According to their notification to the California Attorney General’s Office, the missing storage media contained names and Social Security numbers. The notification does not mention whether this was just employee…