It appears that Lewis & Clark in Oregon has been the victim of a ransomware attack by Vice Society. An urgent notice on the college’s website currently says: Urgent LC Alert: Campus phone service and PioNet Guest Wifi are working. If you are unable to reach Campus Safety at 503-768-7777, call the backup number...
ES: Secondary education center hit by Stormous After several months out of the public eye, the pro-Russian Stormous Ransomware group reappeared in February. Now they have claimed an attack on a secondary education center, the Instituto De Educación Secundaria Ies Emilio Canalejo Olmeda (IESCO) in Cordoba, Spain. On March 30, Stormous listed the entity...
Jonathan Greig reports: The LockBit ransomware group has leaked data it stole from Washington County Sheriff’s Office in northeastern Florida. The Record did not view the stolen data but cybersecurity experts said it included warrants and information on employees. Washington County has more than 25,000 residents and is about 45 minutes away from Panama...
Habiba Rashid reports: The primary target of this spyware campaign were the unsuspecting users in Italy, Malaysia, and Kazakhstan. Google’s Threat Analysis Group (TAG) has discovered two highly-targeted mobile spyware campaigns that use zero-day exploits to deploy surveillance software against iPhone and Android smartphone users. Google TAG discovered two “distinct, limited, and highly targeted”...
Dan Goodin reports: Threat actors are exploiting a critical vulnerability in an IBM file-exchange application in hacks that install ransomware on servers, security researchers have warned. The IBM Aspera Faspex is a centralized file-exchange application that large organizations use to transfer large files or large volumes of files at very high speeds. Rather than...
Update of March 28: It seems LockBit re-listed WCSO last night on their leak site and has dumped data from them, although the files do not seem to be downloading at this time. When an entity has been the victim of a cyberattack, they’d be smart not to discuss the attack via their email...
Farah Yousry reports the aftermath of a ransomware attack by Hive that was previously reported on DataBreaches in 2021: As the second year of the pandemic was nearing an end, employees at Johnson Memorial Health hoped they could catch their breath after dealing with a weeks-long tsunami of COVID-19 hospitalizations and deaths. But on...
In a March 11 post about non-U.S. hospitals that had been victims of cyberattacks, DataBreaches had noted a report about CHU-BREST. Valéry Rieß-Marchive of LeMagIT has an update and more details on the incident. The following uses machine translation from the original French: During a press briefing, this Friday, March 24, the direction of...
Casey Harper reports that Congress finally got around to questioning CMS about a ransomware attack on Healthcare Management Solutions, a CMS subcontractor. The attack involved Medicare and Medicaid numbers. Hundreds of thousands of Americans’ personal information is at risk after Medicare’s data was breached. Now, lawmakers want answers. House Committee on Oversight and Accountability...
Today’s “Don’t Say ‘Ransomware’ Award” goes to….