SecurityWeek
Hacker Caught Stealing Personal Data of 132,000 Individuals Pleads Guilty
Idaho man pleads guilty to hacking charges over cyberattacks he conducted in 2017 and 2018, which involved data theft and extortion.
DataBreaches
As expected, LockBit is back already
Only five days after an international law enforcement effort seized LockBit’s leak sites, 34 servers, and 14,400 rogue email accounts used to support...
DataBreaches
Updating: In “Cronos,” law enforcement took down 34 Lockbit servers
As reported yesterday, law enforcement seized control of LockBit’s leak site and infrastructure. Attempts to view their leak site today show that the...
DataBreaches
Grace Lutheran Communities attacked by BlackCat; employee and resident data acquired
Grace Lutheran Foundation, which does business as Grace Lutheran Communities in Wisconsin, offers a variety of services including rehabilitation services,...
DataBreaches
Updating: Prince George’s County Public Schools breach affected almost 100,000
In August 2023, Prince George’s County Public Schools disclosed a cyberattack. At the time, they reported that “an estimated 4,500 user accounts out of...
DataBreaches
Two hosting companies in Romania had what appear to be unrelated breaches. Did either one ever issue a public notice?
In April 2023, DataBreaches reported on an alleged incident involving TIC Hosting in Romania. No one from TIC Hosting ever responded to inquiries from this...
DataBreaches
HHS’ Office for Civil Rights Settles Malicious Insider Cybersecurity Investigation for $4.75 Million
Today, the U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR), announced a settlement with Montefiore Medical Center, a...
DataBreaches
Was BrightStar Care attacked by two different groups — or was there only one breach?
On January 24, DataBreaches was contacted by a spokesperson for AlphV (“BlackCat”) to see if this site would be interested in reporting on a breach...
DataBreaches
Hackers obtain confidential information on Romanian officials after cyber attack at Parliament
Romania Insider reports: Hackers breached the database of the Romanian Chamber of Deputies, the lower house of the Parliament, after a recent cyber attack...
The Hacker News
BreachForums Founder Sentenced to 20 Years of Supervised Release, No Jail Time
Cyber Crime Marketplace Mastermind, 21, Walks Free (Mostly). Fitzpatrick, creator of BreachForums, avoids prison but faces strict monitoring.
SecurityWeek
Owner of Cybercrime Website BreachForums Sentenced to Supervised Release
Conor Brian Fitzpatrick, the owner of the cybercrime website BreachForums, was sentenced to time served and supervised release.
DataBreaches
Primary Health & Wellness Center, LLC’s public notice of ransomware incident
In the process of researching breach reports submitted to HHS, DataBreaches came across a public notice for an incident affecting Primary Health & Wellness...
DataBreaches
Fred Hutch failed to reveal threats of potential swatting attacks until this site revealed the threat. Should they have disclosed it themselves?
On December 28, DataBreaches published snippets from a chat with a threat actor (TA) who claimed to have involvement with both the Fred Hutch cyberattack and...
DataBreaches
Follow-on extortion campaign: confirmation of some findings by Arctic Wolf
Bill Toulas of Bleeping Computer reported on a recent Arctic Wolf Labs investigation that caught my eye. Arctic Wolf investigated two cases where victims of...
DataBreaches
HMG Healthcare notifies employees and residents of cyberattack
HMG Healthcare has posted a notice of a data breach on its website, but most people are unlikely to notice the substitute notice because of the way it has...
The Record
French hacker from ‘ShinyHunters’ group sentenced to three years in US prison
Sebastien Raoult, also known as “Sezyo Kaizen,” was extradited to the U.S. in January 2023 after his arrest in Morocco the year before.
The Cyber Express
Top 20 Cyberattacks in Recent Past: Key Lessons for Companies in 2024
As the year nears its end, the cybersecurity sector offers profound lessons through incidents like data breaches, leaks, and cyberattacks,
DataBreaches
Troubling attacks on medical sector continue: cancer center’s data leaked, specialty infusion pharmacies locked?
Attacks on the medical sector continue. Fred Hutchinson Cancer Center This week, the group known as Hunters International claimed responsibility for an...
The Cyber Express
Privacy Breach: Norton Healthcare Cyberattack Exposed Data of 2.5 Million Individuals
Norton Healthcare, a nonprofit healthcare institution, based in Kentucky, has acknowledged that during a previous ransomware assault, hackers gained access
DataBreaches
Why we need legislation requiring more transparency in breach notices, Saturday edition (Bluefield University)
Yet another notification letter provides an example of why we need legislation requiring more transparency in disclosures. A DataBreaches.net OpEd. ...
The Record
Healthcare manufacturer Henry Schein expects platform restored this week after cyberattack
One of the largest distributors of healthcare products in the U.S. has restored some of its systems this week after more than a month of disruptions related to multiple cyberattacks.
DataBreaches
Ransomware gang claims to have stolen Crystal Lake Health Centers data
Crystal Lake Health Centers (CLHC) provides comprehensive medical care in 11 healthcare clinics in Michigan. On some date as yet unknown to DataBreaches, they...
DataBreaches
Mission Community Hospital issues notification for May 1 ransomware attack
Deanco Healthcare LLC, which does business as Mission Community Hospital (MCH) in California, has issued a breach notification about a ransomware attack it...
DataBreaches
Canadian Government Announces Data Breach, Urges Public Service Employees to Take Action
Stacey Scott reports: The federal government has issued a warning to current and former public service employees, as well as members of the RCMP and Canadian...
DataBreaches
NoEscape gang continues to use DDoS to pressure reluctant victims to negotiate
Over on SuspectFile, Marco A. De Felice reports that the NoEscape ransomware gang is threatening to release 1.5 TB of data from PruittHealth Network. De Felice...
The Hacker News
8Base Group Deploying New Phobos Ransomware Variant via SmokeLoader
The threat actors behind the 8Base ransomware are utilizing a variant of the Phobos ransomware for their attacks.
SecurityWeek
Ransomware Group Files SEC Complaint Over Victim's Failure to Disclose Data Breach
Alphv/BlackCat ransomware group files SEC complaint against MeridianLink over its failure to disclose a data breach caused by the hackers
Bleeping Computer
Ransomware gang files SEC complaint over victim’s undisclosed breach
The ALPHV/BlackCat ransomware operation has taken extortion to a new level by filing a U.S. Securities and Exchange Commission complaint against one of their alleged victims for not complying with the four-day rule to disclose a cyberattack.
The Record
MeridianLink confirms cyberattack after ransomware gang claims to report company to SEC
Ransomware group AlphV claimed on its leak site that it reported MeridianLink to the Securities and Exchange Commission (SEC) for not informing the regulator of a cyberattack.
DataBreaches
AlphV files an SEC complaint against MeridianLink for not disclosing a breach to the SEC (2)
Earlier today, AlphV added MeridianLink to their leak site. MeridianLink (MLNK) is the provider of a loan origination system and digital lending platform for...
DataBreaches
Time’s up, Sunday edition: Some Jeffco Public Schools data was leaked, some data was put up for sale
As first reported on DataBreaches on Friday, SingularityMD indicated that they would be leaking or selling Jeffco Public Schools data. They followed through...
DataBreaches
Attorney General James Secures $450,000 from US Radiology Specialists for failing to protect patient data
The following press release from the NYS Attorney General’s Office relates to an incident previously noted on DataBreaches.net. The Assurance of...
Bleeping Computer
Dutch hacker jailed for extortion, selling stolen data on RaidForums
A former Dutch cybersecurity professional was sentenced to four years in prison after being found guilty of hacking and blackmailing more than a dozen companies in the Netherlands and worldwide.
DataBreaches
Exclusive: Daixin Team claims responsibility for attacks affecting Canadian hospitals, starts leaking data
Daixin Team is now claiming responsibility for — and leaking data from — an attack that has significantly impacted five Canadian hospitals...
DataBreaches
Exclusive: Advarra hacked, threat actors threatening to leak data (1)
Advarra describes itself as providing integrated solutions to safeguard trial participants, empowering clinical sites, ensuring compliance, and optimizing...
DataBreaches
India’s Biggest Data Leak So Far? Covid-19 Test Info of 81.5Cr Citizens With ICMR Up for Sale
Ankur Sharma reports: In what is suspected to be the biggest data leak case in the country so far, details of 81.5 crore Indians with the Indian Council of...
Bleeping Computer
Hackers email stolen student data to parents of Nevada school district
The Clark County School District (CCSD) in Nevada is dealing with a potentially massive data breach, as hackers email parents their children's' data that was allegedly stolen during a recent cyberattack.
DataBreaches
Hackers escalate: leak 200k CCSD students’ data; claim to still have access to CCSD email system
Clark County School District (CCSD) in Nevada informed parents and employees that they became aware of a “cybersecurity incident” on October 5...
DataBreaches
Exclusive: Clark County School District student data begins to leak; CCSD doesn’t comment
Tiffany Lane reports: Problems continue for Clark County School District families and staff about a week and a half after being notified of a cyber...
Bleeping Computer
D.C. Board of Elections confirms voter data stolen in site hack
The District of Columbia Board of Elections (DCBOE) is currently probing a data leak involving an unknown number of voter records following breach claims from a threat actor known as RansomedVC.
DataBreaches
D.C. Board of Elections voter registration data up for sale on dark web (1)
A new listing on ransomedvc claims, “We have successfully breached the District of Columbia Board Of Elections and have gotten more than 600k lines of...
DataBreaches
INC Ransomware claims to have hit Federal Labor Relations Authority
On September 20, a relatively new ransomware gang called INC Ransomware added the Federal Labor Relations Authority to their leak site. As proof, they offered...
DataBreaches
Rock County Health Department in Wisconsin victim of cyberattack
Officials in Rock County, Wisconsin have confirmed to Recorded Future News that they experienced a cyberattack on September 29: “Since some systems are not...
DataBreaches
AlphV claims to have hit MNGI Digestive Health — developing
MNGI Digestive Health (MNGI) in Minnesota is a physician-owned multi-center gastroenterology practice that has been recognized for its excellence. MNGI was...
DataBreaches
Ransomware group claimed to have hit a New Jersey cardiology group. Did they?
On September 2, the NoEscape ransomware group added Mulkay Cardiology Consultants to their leak site and claimed to have successfully encrypted them. “We...
DataBreaches
Pain Care Specialists may be feeling the pain of a ransomware attack
It appears that Pain Care Specialists in Oregon became the victim of an attack by AlphV. The threat actors added the medical entity to their leak site earlier...
The Record
Snatch gang ‘consistently evolved’ in targeting multiple industries, feds say
The FBI and CISA issued a detailed report on the Russia-based Snatch ransomware group, which has claimed several high-profile attacks in recent months.
DataBreaches
Visiting Physician’s Network in Texas silent about ransomware attack and incident response
One of the newer ransomware groups to open a leak site is “ThreeAM.” Bleeping Computer recently reported that the ThreeAM malware is written in...
DataBreaches
“I’m Not Pro-Russia and I’m Not a Terrorist!” —- InfraGard and Airbus Hacker “USDoD” Unveils His New Campaigns
The first time DataBreaches remembers hearing about the man who calls himself “USDoD” was when he posted a sales listing for member data from...
DataBreaches
FL: Hillsborough County Public Schools cyberattack claimed by LockBit3.0
LockBit has added Hillsborough County Public Schools in Florida to their leak site today. They claim to have acquired 2 TB of data, and provide a file list...
DataBreaches
St. Paul Public Schools notifies families of data breach from February
KSTP reports: St. Paul Public Schools notified families and staff last week of a “data security incident” last winter that may have exposed students’...
The Record
Canadian Nurses Association confirms data theft after group dumps stolen info
The Canadian Nurses Association (CNA) confirmed that it is working with its members to respond to a leak of sensitive data stolen by a group of hackers earlier this year.
DataBreaches
An inexcusable gap from breach to notification, or an excusable one?
Some state and federal laws provide specific timeframes by which breached entities must provide notice to regulators and to those affected by a data breach...
DataBreaches
“i know it hurts your little dick seeing a true hacker like me in a crowd full of skids and sheep,” said a man with no knowledge of anatomy
After the arrest of Breached.vc’s owner “Pompompurin” in March, Breached.vc was taken offline by an administrator because it seemed likely...
DataBreaches
El Salvadoran database raises questions of possible political intrigue
A database listed for sale on a popular hacking forum may raise some political questions for El Salvadorans. On August 16, a listing offered 114GB of files...
DataBreaches
Two more attacks involving sensitive data: a plastic surgery center in Brazil and a psychiatric hospital in Lithuania
Although it’s impossible for DataBreaches to really monitor for attacks on medical entities around the world, here are two non-U.S. ones recently spotted...
DataBreaches
Listing for sale of U.S. Education Department data may not be what you expect
Yesterday, a listing appeared on a popular hacking forum offering data for sale that were reported to be from the US Department of Education (Ed.gov). ...
DataBreaches
Jefferson County Health Center notifies patients about May cyberattack
On or about July 7, Karakurt threat actors added Jefferson County Health Center in Iowa to their leak site to pressure them to pay ransom demands. Or was it...
DataBreaches
Parathon by JDA eHealth Systems hit by Akira? They haven’t responded to inquiries.
Visitors to Akira’s dark web leak site are greeted with a message: Well, you are here. It means that you’re suffering from cyber incident right now...
DataBreaches
Hawaiʻi Community College pays ransom to attackers
Law enforcement and experienced ransomware professionals generally advise victims not to pay any ransom demands. Yet the University of Hawaiʻi Community...
DataBreaches
Major Malaysian water utilities company hit by hackers; Ranhill offline; hackers claim databases and backups deleted
After a period of quiet, DESORDEN Group has re-emerged as a threat to Malaysian entities, and now, it seems, to providing drinkable water to Johor (see this...
SecurityWeek
MOVEit Hack Could Earn Cybercriminals $100M as Number of Confirmed Victims Grows
Experts believe the Cl0p ransomware gang could earn as much as $100 million from the MOVEit hack, with hundreds of confirmed victims
DataBreaches
Tampa General Hospital confirms cybersecurity incident; 1.2 million patients being notified (Updated)
Tampa General Hospital in Florida was hit by a cyberattack during three weeks in May, according to a statement issued by the hospital earlier today. The...
DataBreaches
Announce: New category on DataBreaches.net
Given the explosion of news and analyses concerning artificial intelligence, a category for the topic has now been added to DataBreaches.net. To find articles...
The Hacker News
Owner of BreachForums Pleads Guilty to Cybercrime and Child Pornography Charges
Conor Brian Fitzpatrick, owner of BreachForums, pleads guilty to charges related to operating a cybercrime forum and possessing child pornography.
DataBreaches
BlackCat adds a community behavioral health center in Alabama to its leak site (UPDATED)
AlphV (aka BlackCat) threat actors have added Highland Health Systems in Alabama to their leak site. As proof of claims, they have leaked a number of files...
The Record
BreachForums administrator facing 30-year sentence after pleading guilty to three charges
The former administrator of a popular cybercrime forum pleaded guilty this week to three charges related to his operation of the site and to having child pornography on one of his devices.
Bleeping Computer
BreachForums owner Pompompurin pleads guilty to hacking charges
20-year-old Conor Brian Fitzpatrick aka Pompompurin, the owner of the notorious BreachForums (aka Breached) hacking forum, has pleaded guilty to charges of hacking and possession of child pornography.
DataBreaches
8Base claims to have stolen patient data and employee info from Kansas Medical Center
While LockBit was adding one physician-owned medical entity to its leak site, a relatively new group known as 8Base was adding another physician-owned medical...
DataBreaches
Another business associate attack results in theft of patient data — Panorama Eyecare
Panorama Eyecare in Colorado is a physician-owned firm providing business associate services to vision care providers: Earlier today, the firm was added to...
Bleeping Computer
HCA confirms breach after hacker steals data of 11 million patients
HCA Healthcare disclosed a data breach impacting an estimated 11 million patients who received care at one of its hospitals and clinics after a threat actor posted samples of stolen data on a hacking forum.
SecurityWeek
Personal Information of 11 Million Patients Stolen in Data Breach at HCA Healthcare
HCA Healthcare says the personal information of roughly 11 million patients was stolen in a data breach after hackers posted data.
DataBreaches
It: Luigi Vanvitelli hospital hit by ransomware
On July 4, the Luigi Vanvitelli hospital in Italy posted a notice on its homepage that it had been the victim of a ransomware attack on July 1 and was...
DataBreaches
Intellectual property allegedly from Razer appears for sale on hacking forum
Data that is claimed to be from Razer was posted on a hacking forum today in a sales listing. The listing by a forum member provides numerous screencaps of...
DataBreaches
Video and chatting app leaks more than 100 million user messages
As reported by vx-underground on Telegram: Tigo, a live video and chatting app for Android and iPhone, accidentally exposed 100,000,000+ user messages online...
DataBreaches
Murfreesboro Medical Clinic & SurgiCenter ransomware attack affected 559,000 patients (update1)
On May 6 and May 7, DataBreaches reported that the attack on Murfreesboro Medical Clinic & SurgiCenter (“MMC”) appeared to be the work of the...
DataBreaches
Mount Desert Island Hospital notifies 24,180 patients of April network attack
On June 30, Mount Desert Island Hospital in Maine reported a breach to HHS that affected 24,180 patients. The hospital had previously disclosed the incident on...
DataBreaches
BlackCat continues attempting to extort healthcare entities
BlackCat has been busy and continues to attack the healthcare sector here and abroad. Visitors to their leak site this week saw listings for: Coachella Valley...
Bleeping Computer
FBI seizes BreachForums after arresting its owner Pompompurin in March
U.S. law enforcement today seized the clear web domain of the notorious BreachForums (aka Breached) hacking forum three months after apprehending its owner Conor Fitzpatrick (aka Pompompurin), under cybercrime charges.
DataBreaches
Confused about the drama with the new BreachForums? Reading this will either help you or make your head spin.
Over the past week, DataBreaches has been contacted by a few journalists who have been somewhat understandably confused about the situation with the original...
DataBreaches
The “reincarnation” of BreachForums: A cyberdrama in three acts
BreachForums has been reincarnated. But as with all things related to BreachForums, its reincarnation has been accompanied by all kinds of drama. Act 1: The...
DataBreaches
Rhysida claims to have attacked Paris High School in Illinois
Schools continue to be an attractive and all-too-easy target for criminal groups. This week, Rhysida threat actors added Paris High School in Illinois to their...
DataBreaches
Franklin, Tennessee suffered a cyberattack in March. Do employees know their information was involved?
Franklin, Tennessee was the victim of a cyberattack in March. Because they have not issued any public statements or responded to inquiries as to whether they...
DataBreaches
Switzerland fears government data stolen in cyberattack by PLAY threat actors
AFP reports: Switzerland said Thursday that government operational data might have been stolen in a cyberattack on the technology firm that provides...
DataBreaches
Another hospital hit by ransomware: Columbus Regional Healthcare System in North Carolina hit by Daixin
Columbus Regional Healthcare System (CRHS) is a non-profit organization in North Carolina licensed for 154 beds. The Daixin ransomware group claims that on...
DataBreaches
Pacific Union College was attacked on March 27. When will they publicly admit personal info was compromised?
That Pacific Union College (PUC) experienced a cyberattack is not a secret. The college even posted a notice on their website on April 7 stating that they were...
DataBreaches
Mission Community Hospital attackers exploited vulnerabilites in Paragon and Cisco
As Mission Community Hospital in California continues to investigate a cyberattack in April, more details have emerged as to how the attack by RansomHouse...
DataBreaches
Rhysida ransomware group claims attack on Martinique
A ransomware group that first emerged in May has added the government of Martinique to its leak site. Although there is no current notice on...
DataBreaches
Developing: RaidForums users db leaked
In what is likely making some people a bit nervous, the users database for RaidForums has been leaked on a forum. The database appears to date to...
DataBreaches
Two ransomware groups claimed to have attacked Albany ENT & Allergy Services and leaked data, but AENT doesn’t mention that at all in their notification?
On April 28, DataBreaches reported that two different ransomware groups claimed to have attacked Albany ENT & Allergy Services, P.C. in Albany, New York...
DataBreaches
The Vascular Center of Intervention breach — what their notification says and what it didn’t say
On May 24, the Vascular Center of Intervention (VCI) in California submitted a breach notification to California and posted a substitute notice on VCI’s...
DataBreaches
Morris Hospital investigating attack by Royal ransomware group
On May 22, the Royal ransomware group added Morris Hospital to their leak site with a small sample of files as proof of claims. On May 23, the hospital...
DataBreaches
Bits ‘n Pieces (Trozos y Piezas)
CO: SECOP II platform affected by “presumed hacking” The SECOP II platform is a transactional platform with accounts for state entities and contractors...
DataBreaches
Peachtree Orthopedics alerts patients to cyberattack; third patient data breach in seven years
An Atlanta clinic alerts patients to at least its third incident involving patient data in seven years. Karakurt threat actors recently added Peachtree...
DataBreaches
Phishing attack affects Texas patients; at least 130,000 impacted
DataBreaches.net has noted some reports this week involving an unnamed business associate that discovered a phishing attack in January of this year. The most...
DataBreaches
Bluefield University cyberattack affects employees, students, and some students’ parents (2)
Updated May 13: It appears that Bluefield U. has not warned students that the university’s system is still compromised and that the threat actor can see...
DataBreaches
NC: Gaston College still investigating February cyberattack; personal information stolen still being determined
Taylor Young reports: Gaston College is a victim of a ransomware attack that prompted the school to take critical systems offline for caution. A college...
DataBreaches
Murfreesboro Medical Clinic reopens some, but not all, services. Attack appears to be work of BianLian.
On April 22, the Murfreesboro Medical Clinic in Tennessee suffered a ransomware attack that resulted in them having to shut down all operations on May 1-3 to...
Bleeping Computer
Ransomware gang hijacks university alert system to issue threats
The Avos ransomware gang hijacked Bluefield University's emergency broadcast system, "RamAlert," to send students and staff SMS texts and email alerts that their data was stolen and would soon be released.
DataBreaches
Unwelcome guest: Trigona ransomware group claims they’ve taken up residence in Unique Imaging’s network
Unique Imaging, Inc. has three locations in Florida: Aventura, Biscayne, Miami, and Dadeland. If you were to visit their website today, you wouldn’t see...
Loading more articles....