LATEST POST
CrelioHealth leak exposed 28M+ patient records
Human error in configuring data storage continues to result in massive leaks or potential leaks of personal and sensitive health data. In today’s news, we learned that CrelioHealth left an Elasticsearch cluster exposed. Luckily for them, it was a whitehat researcher, Bob Diachenko of SecurityDiscovery, who spotted the problem and contacted them to alert them. […]
Some municipal court systems using REJIS report suspending services due to “security incident”
The Regional Justice Information System (REJIS) is used by court systems to support docket functions and certain scheduling functions such as the release of prisoners. REJIS is a government commission that provides services to criminal justice departments across Missouri as well as in Illinois and Kansas. On Monday, Louis County (Missouri), Kansas City (Missouri), Kansas […]
Facebook Messenger phishing wave targets 100K business accounts per week
Hackers use a massive network of fake and compromised Facebook accounts to send out millions of Messenger phishing messages to target Facebook business accounts with password-stealing malware. The attackers trick the targets into downloading a RAR/ZIP archive containing a downloader for an evasive Python-based stealer that grabs cookies and passwords stored in the victim’s browser. […]
Save the Children hit by BianLian extortionist gang
BianLian, previously known as a ransomware gang but more recently known for not bothering with encryption but just hacking and exfiltrating data, has reportedly attacked Save the Children, a well-known non-profit. While BianLian did not name the charity (they obfuscate their victims’ names while they are still hoping to get paid), their description of the […]
MGM Resorts Dealing With Significant Cyberattack (Update 3)
Hotel and casino operator MGM Resorts is dealing with a cyberattack that has somewhat sent it back into the digital dark ages at multiple properties and locations. On September 11, MGM Resorts posted a statement on its Twitter account confirming that it was dealing with what it described as a cybersecurity incident. They did not […]
L.A. Care Healthplan settles HHS OCR charges stemming from multiple violations for $1.3 million and corrective action plan
Today, the U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) announced a settlement of potential violations of the Health Insurance Portability and Accountability Act (HIPAA) Rules with LA Care, the nation’s largest publicly operated health plan that provides health care benefits and coverage through state, federal, and commercial programs. OCR enforces the HIPAA […]
Dissecting the MOVEit breach: Lessons learned from the ransomware attack
The MOVEit data breach, discussed in an earlier post, continues to make headlines. As SDX reports: Orchestrated by ransomware gang CL0P exploiting a zero-day vulnerability, it is now considered one of the largest hacks of 2023 — and potentially in recent history. To date, it is known to have impacted more than 1,150 organizations and nearly 56 million individuals, […]
Rhysida ransomware gang claims responsibility for Singing River Health System attack
Rhysida has now added Singing River Health System in Mississippi to their dark web leak site. The health system, which includes Pascagoula Hospital, Ocean Springs Hospital, and Gulfport Hospital as well as 10 clinics discovered the ransomware attack on August 19. In its most recent update of August 31, it stated: “We understand the concerns […]