SecurityWeek
Hacker Caught Stealing Personal Data of 132,000 Individuals Pleads Guilty
Idaho man pleads guilty to hacking charges over cyberattacks he conducted in 2017 and 2018, which involved data theft and extortion.
SecurityWeek
Idaho man pleads guilty to hacking charges over cyberattacks he conducted in 2017 and 2018, which involved data theft and extortion.
DataBreaches
Only five days after an international law enforcement effort seized LockBit’s leak sites, 34 servers, and 14,400 rogue email accounts used to support...
DataBreaches
As reported yesterday, law enforcement seized control of LockBit’s leak site and infrastructure. Attempts to view their leak site today show that the...
DataBreaches
Grace Lutheran Foundation, which does business as Grace Lutheran Communities in Wisconsin, offers a variety of services including rehabilitation services,...
DataBreaches
In August 2023, Prince George’s County Public Schools disclosed a cyberattack. At the time, they reported that “an estimated 4,500 user accounts out of...
DataBreaches
In April 2023, DataBreaches reported on an alleged incident involving TIC Hosting in Romania. No one from TIC Hosting ever responded to inquiries from this...
DataBreaches
Today, the U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR), announced a settlement with Montefiore Medical Center, a...
DataBreaches
On January 24, DataBreaches was contacted by a spokesperson for AlphV (“BlackCat”) to see if this site would be interested in reporting on a breach...
DataBreaches
Romania Insider reports: Hackers breached the database of the Romanian Chamber of Deputies, the lower house of the Parliament, after a recent cyber attack...
The Hacker News
Cyber Crime Marketplace Mastermind, 21, Walks Free (Mostly). Fitzpatrick, creator of BreachForums, avoids prison but faces strict monitoring.
SecurityWeek
Conor Brian Fitzpatrick, the owner of the cybercrime website BreachForums, was sentenced to time served and supervised release.
DataBreaches
In the process of researching breach reports submitted to HHS, DataBreaches came across a public notice for an incident affecting Primary Health & Wellness...
DataBreaches
On December 28, DataBreaches published snippets from a chat with a threat actor (TA) who claimed to have involvement with both the Fred Hutch cyberattack and...
DataBreaches
Bill Toulas of Bleeping Computer reported on a recent Arctic Wolf Labs investigation that caught my eye. Arctic Wolf investigated two cases where victims of...
DataBreaches
HMG Healthcare has posted a notice of a data breach on its website, but most people are unlikely to notice the substitute notice because of the way it has...
The Record
Sebastien Raoult, also known as “Sezyo Kaizen,” was extradited to the U.S. in January 2023 after his arrest in Morocco the year before.
The Cyber Express
As the year nears its end, the cybersecurity sector offers profound lessons through incidents like data breaches, leaks, and cyberattacks,
DataBreaches
Attacks on the medical sector continue. Fred Hutchinson Cancer Center This week, the group known as Hunters International claimed responsibility for an...
The Cyber Express
Norton Healthcare, a nonprofit healthcare institution, based in Kentucky, has acknowledged that during a previous ransomware assault, hackers gained access
DataBreaches
Yet another notification letter provides an example of why we need legislation requiring more transparency in disclosures. A DataBreaches.net OpEd. ...
The Record
One of the largest distributors of healthcare products in the U.S. has restored some of its systems this week after more than a month of disruptions related to multiple cyberattacks.
DataBreaches
Crystal Lake Health Centers (CLHC) provides comprehensive medical care in 11 healthcare clinics in Michigan. On some date as yet unknown to DataBreaches, they...
DataBreaches
Deanco Healthcare LLC, which does business as Mission Community Hospital (MCH) in California, has issued a breach notification about a ransomware attack it...
DataBreaches
Stacey Scott reports: The federal government has issued a warning to current and former public service employees, as well as members of the RCMP and Canadian...
DataBreaches
Over on SuspectFile, Marco A. De Felice reports that the NoEscape ransomware gang is threatening to release 1.5 TB of data from PruittHealth Network. De Felice...
The Hacker News
The threat actors behind the 8Base ransomware are utilizing a variant of the Phobos ransomware for their attacks.
SecurityWeek
Alphv/BlackCat ransomware group files SEC complaint against MeridianLink over its failure to disclose a data breach caused by the hackers
Bleeping Computer
The ALPHV/BlackCat ransomware operation has taken extortion to a new level by filing a U.S. Securities and Exchange Commission complaint against one of their alleged victims for not complying with the four-day rule to disclose a cyberattack.
The Record
Ransomware group AlphV claimed on its leak site that it reported MeridianLink to the Securities and Exchange Commission (SEC) for not informing the regulator of a cyberattack.
DataBreaches
Earlier today, AlphV added MeridianLink to their leak site. MeridianLink (MLNK) is the provider of a loan origination system and digital lending platform for...
DataBreaches
As first reported on DataBreaches on Friday, SingularityMD indicated that they would be leaking or selling Jeffco Public Schools data. They followed through...
DataBreaches
The following press release from the NYS Attorney General’s Office relates to an incident previously noted on DataBreaches.net. The Assurance of...
Bleeping Computer
A former Dutch cybersecurity professional was sentenced to four years in prison after being found guilty of hacking and blackmailing more than a dozen companies in the Netherlands and worldwide.
DataBreaches
Daixin Team is now claiming responsibility for — and leaking data from — an attack that has significantly impacted five Canadian hospitals...
DataBreaches
Advarra describes itself as providing integrated solutions to safeguard trial participants, empowering clinical sites, ensuring compliance, and optimizing...
DataBreaches
Ankur Sharma reports: In what is suspected to be the biggest data leak case in the country so far, details of 81.5 crore Indians with the Indian Council of...
Bleeping Computer
The Clark County School District (CCSD) in Nevada is dealing with a potentially massive data breach, as hackers email parents their children's' data that was allegedly stolen during a recent cyberattack.
DataBreaches
Clark County School District (CCSD) in Nevada informed parents and employees that they became aware of a “cybersecurity incident” on October 5...
DataBreaches
Tiffany Lane reports: Problems continue for Clark County School District families and staff about a week and a half after being notified of a cyber...
Bleeping Computer
The District of Columbia Board of Elections (DCBOE) is currently probing a data leak involving an unknown number of voter records following breach claims from a threat actor known as RansomedVC.
DataBreaches
A new listing on ransomedvc claims, “We have successfully breached the District of Columbia Board Of Elections and have gotten more than 600k lines of...
DataBreaches
On September 20, a relatively new ransomware gang called INC Ransomware added the Federal Labor Relations Authority to their leak site. As proof, they offered...
DataBreaches
Officials in Rock County, Wisconsin have confirmed to Recorded Future News that they experienced a cyberattack on September 29: “Since some systems are not...
DataBreaches
MNGI Digestive Health (MNGI) in Minnesota is a physician-owned multi-center gastroenterology practice that has been recognized for its excellence. MNGI was...
DataBreaches
On September 2, the NoEscape ransomware group added Mulkay Cardiology Consultants to their leak site and claimed to have successfully encrypted them. “We...
DataBreaches
It appears that Pain Care Specialists in Oregon became the victim of an attack by AlphV. The threat actors added the medical entity to their leak site earlier...
The Record
The FBI and CISA issued a detailed report on the Russia-based Snatch ransomware group, which has claimed several high-profile attacks in recent months.
DataBreaches
One of the newer ransomware groups to open a leak site is “ThreeAM.” Bleeping Computer recently reported that the ThreeAM malware is written in...
DataBreaches
The first time DataBreaches remembers hearing about the man who calls himself “USDoD” was when he posted a sales listing for member data from...
DataBreaches
LockBit has added Hillsborough County Public Schools in Florida to their leak site today. They claim to have acquired 2 TB of data, and provide a file list...
DataBreaches
KSTP reports: St. Paul Public Schools notified families and staff last week of a “data security incident” last winter that may have exposed students’...
The Record
The Canadian Nurses Association (CNA) confirmed that it is working with its members to respond to a leak of sensitive data stolen by a group of hackers earlier this year.
DataBreaches
Some state and federal laws provide specific timeframes by which breached entities must provide notice to regulators and to those affected by a data breach...
DataBreaches
After the arrest of Breached.vc’s owner “Pompompurin” in March, Breached.vc was taken offline by an administrator because it seemed likely...
DataBreaches
A database listed for sale on a popular hacking forum may raise some political questions for El Salvadorans. On August 16, a listing offered 114GB of files...
DataBreaches
Although it’s impossible for DataBreaches to really monitor for attacks on medical entities around the world, here are two non-U.S. ones recently spotted...
DataBreaches
Yesterday, a listing appeared on a popular hacking forum offering data for sale that were reported to be from the US Department of Education (Ed.gov). ...
DataBreaches
On or about July 7, Karakurt threat actors added Jefferson County Health Center in Iowa to their leak site to pressure them to pay ransom demands. Or was it...
DataBreaches
Visitors to Akira’s dark web leak site are greeted with a message: Well, you are here. It means that you’re suffering from cyber incident right now...
DataBreaches
Law enforcement and experienced ransomware professionals generally advise victims not to pay any ransom demands. Yet the University of Hawaiʻi Community...
DataBreaches
After a period of quiet, DESORDEN Group has re-emerged as a threat to Malaysian entities, and now, it seems, to providing drinkable water to Johor (see this...
SecurityWeek
Experts believe the Cl0p ransomware gang could earn as much as $100 million from the MOVEit hack, with hundreds of confirmed victims
DataBreaches
Tampa General Hospital in Florida was hit by a cyberattack during three weeks in May, according to a statement issued by the hospital earlier today. The...
DataBreaches
Given the explosion of news and analyses concerning artificial intelligence, a category for the topic has now been added to DataBreaches.net. To find articles...
The Hacker News
Conor Brian Fitzpatrick, owner of BreachForums, pleads guilty to charges related to operating a cybercrime forum and possessing child pornography.
DataBreaches
AlphV (aka BlackCat) threat actors have added Highland Health Systems in Alabama to their leak site. As proof of claims, they have leaked a number of files...
The Record
The former administrator of a popular cybercrime forum pleaded guilty this week to three charges related to his operation of the site and to having child pornography on one of his devices.
Bleeping Computer
20-year-old Conor Brian Fitzpatrick aka Pompompurin, the owner of the notorious BreachForums (aka Breached) hacking forum, has pleaded guilty to charges of hacking and possession of child pornography.
DataBreaches
While LockBit was adding one physician-owned medical entity to its leak site, a relatively new group known as 8Base was adding another physician-owned medical...
DataBreaches
Panorama Eyecare in Colorado is a physician-owned firm providing business associate services to vision care providers: Earlier today, the firm was added to...
Bleeping Computer
HCA Healthcare disclosed a data breach impacting an estimated 11 million patients who received care at one of its hospitals and clinics after a threat actor posted samples of stolen data on a hacking forum.
SecurityWeek
HCA Healthcare says the personal information of roughly 11 million patients was stolen in a data breach after hackers posted data.
DataBreaches
On July 4, the Luigi Vanvitelli hospital in Italy posted a notice on its homepage that it had been the victim of a ransomware attack on July 1 and was...
DataBreaches
Data that is claimed to be from Razer was posted on a hacking forum today in a sales listing. The listing by a forum member provides numerous screencaps of...
DataBreaches
As reported by vx-underground on Telegram: Tigo, a live video and chatting app for Android and iPhone, accidentally exposed 100,000,000+ user messages online...
DataBreaches
On May 6 and May 7, DataBreaches reported that the attack on Murfreesboro Medical Clinic & SurgiCenter (“MMC”) appeared to be the work of the...
DataBreaches
On June 30, Mount Desert Island Hospital in Maine reported a breach to HHS that affected 24,180 patients. The hospital had previously disclosed the incident on...
DataBreaches
BlackCat has been busy and continues to attack the healthcare sector here and abroad. Visitors to their leak site this week saw listings for: Coachella Valley...
Bleeping Computer
U.S. law enforcement today seized the clear web domain of the notorious BreachForums (aka Breached) hacking forum three months after apprehending its owner Conor Fitzpatrick (aka Pompompurin), under cybercrime charges.
DataBreaches
Over the past week, DataBreaches has been contacted by a few journalists who have been somewhat understandably confused about the situation with the original...
DataBreaches
BreachForums has been reincarnated. But as with all things related to BreachForums, its reincarnation has been accompanied by all kinds of drama. Act 1: The...
DataBreaches
Schools continue to be an attractive and all-too-easy target for criminal groups. This week, Rhysida threat actors added Paris High School in Illinois to their...
DataBreaches
Franklin, Tennessee was the victim of a cyberattack in March. Because they have not issued any public statements or responded to inquiries as to whether they...
DataBreaches
AFP reports: Switzerland said Thursday that government operational data might have been stolen in a cyberattack on the technology firm that provides...
DataBreaches
Columbus Regional Healthcare System (CRHS) is a non-profit organization in North Carolina licensed for 154 beds. The Daixin ransomware group claims that on...
DataBreaches
That Pacific Union College (PUC) experienced a cyberattack is not a secret. The college even posted a notice on their website on April 7 stating that they were...
DataBreaches
As Mission Community Hospital in California continues to investigate a cyberattack in April, more details have emerged as to how the attack by RansomHouse...
DataBreaches
A ransomware group that first emerged in May has added the government of Martinique to its leak site. Although there is no current notice on...
DataBreaches
In what is likely making some people a bit nervous, the users database for RaidForums has been leaked on a forum. The database appears to date to...
DataBreaches
On April 28, DataBreaches reported that two different ransomware groups claimed to have attacked Albany ENT & Allergy Services, P.C. in Albany, New York...
DataBreaches
On May 24, the Vascular Center of Intervention (VCI) in California submitted a breach notification to California and posted a substitute notice on VCI’s...
DataBreaches
On May 22, the Royal ransomware group added Morris Hospital to their leak site with a small sample of files as proof of claims. On May 23, the hospital...
DataBreaches
CO: SECOP II platform affected by “presumed hacking” The SECOP II platform is a transactional platform with accounts for state entities and contractors...
DataBreaches
An Atlanta clinic alerts patients to at least its third incident involving patient data in seven years. Karakurt threat actors recently added Peachtree...
DataBreaches
DataBreaches.net has noted some reports this week involving an unnamed business associate that discovered a phishing attack in January of this year. The most...
DataBreaches
Updated May 13: It appears that Bluefield U. has not warned students that the university’s system is still compromised and that the threat actor can see...
DataBreaches
Taylor Young reports: Gaston College is a victim of a ransomware attack that prompted the school to take critical systems offline for caution. A college...
DataBreaches
On April 22, the Murfreesboro Medical Clinic in Tennessee suffered a ransomware attack that resulted in them having to shut down all operations on May 1-3 to...
Bleeping Computer
The Avos ransomware gang hijacked Bluefield University's emergency broadcast system, "RamAlert," to send students and staff SMS texts and email alerts that their data was stolen and would soon be released.
DataBreaches
Unique Imaging, Inc. has three locations in Florida: Aventura, Biscayne, Miami, and Dadeland. If you were to visit their website today, you wouldn’t see...
Loading more articles....