Incidents involving malware or ransomware. In some cases, incidents called “ransomware” do not involve any locking but merely hack, exfiltrate, and attempt to extort.
ClaimDepot reports: On July 3, 2025, Sanderling Healthcare became the victim of a significant ransomware attack that may have impacted thousands of patients. The data breach was orchestrated by the Sarcoma group disclosed on the dark web, where the attackers claimed to have hacked and accessed sensitive data from the company’s systems. According to the […]
The Register reports: SonicWall on Monday confirmed that it’s investigating a rash of ransomware activity targeting its firewall devices, following multiple reports of a zero-day bug under active exploit in its VPNs. “SonicWall is actively investigating a recent increase in reported cyber incidents involving a number of Gen 7 firewalls running various firmware versions with […]
NASCAR has confirmed it was the victim of a data breach after hackers demanded a $4million ransom following a ransomware attack. The racing organization says it suffered the breach between March 31, 2025 and April 3, 2025. Correspondence with multiple state regulators this week (including this example from New Hampshire) confirms the data breach, and says […]
Invezz reports: Federal prosecutors have launched a forfeiture action to claim $2.3 million in Bitcoin allegedly tied to a ransomware actor from the newly identified Chaos group. According to a July 28 press release from the US Attorney’s Office for the Northern District of Texas, the Department of Justice filed a civil complaint seeking the forfeiture of […]
InfoSecurity Magazine reports: BlackSuit’s dark web data leak site and private negotiation panels have been taken offline in what appears to be a large-scale law enforcement operation. On July 24, the ransomware group’s leading site, usually accessible via The Onion Router (TOR), displayed a banner stating, “This site has been seized by U.S. Homeland Security […]
DataBreaches.net reports that two entities have recently ceased operations following ransomware attacks. One was in the healthcare sector while the other was in the business sector: It is still fairly rare for a ransomware victim to totally shutter its doors permanently as a result of an incident, but a relatively small breach in Georgia was […]
The Record reports: The British government’s proposals to overhaul its ransomware strategy reached a minor milestone on Tuesday as the Home Office published its formal response to a consultation on amending the law, but questions remain regarding how effective the measures will be. Public consultations are a regular part of the British legislative process. In […]
In a Thursday surprise, ransomware gang Hunters International announced they are closing the project and are offering their past victims free decryptor keys if they need them. The Register reports: Ransomware gang Hunters International has shut up shop and offered decryption keys to all victims as a parting favor. Announcing the news on Thursday morning, […]
Sometimes, our first real awareness of a breach is a press release from a law firm or class action website seeking plaintiffs for potential litigation. ClaimDepot reports: Bronx Pro Group, a real estate development and property management company experienced a data breach. This incident was the result of a ransomware attack carried out by the […]
United24 reports: The United States has imposed sanctions on the Russian cybercrime group Aeza Group and its associated global network, the US Department of the Treasury’s Office of Foreign Assets Control (OFAC) announced on June 1 [sic]. OFAC designated Aeza Group for its role in supporting cybercriminal operations targeting victims in the United States and […]
