DataBreaches.net reports on a ransomware incident where the victim was re-encrypted — and then re-encrypted again. From there, things took a downward turn, with AlphV getting mad at Henry Schein and Coveware and re-encrypting Henry Schein to put more pressure on them to negotiate and pay. DataBreaches.net provides a chronology of updates, including what seems […]
Americans who hoped to close on home sales this week may have had their hopes dashed by an attack on Fidelity National Financial. The Register reports: Fortune 500 insurance biz Fidelity National Financial (FNF) has confirmed that it has fallen victim to a “cybersecurity incident.” The announcement came in the form of an 8-K filing […]
“They did WHAT??” Ransomware gangs will often test ways to pressure victims to pay. But today, threat actors associated with the AlphV (BlackCat) group tested a new approach that is raising eyebrows in the cybersecurity community. When a victim, MeridianLink, didn’t pay them quickly and didn’t even start to negotiate any payment with them, AlphV […]
MassDevice reports: Henry Schein (Nasdaq: HSIC)+ warned customers and suppliers today that their sensitive information may have been exposed in a cyberattack. The medical device manufacturer and distributor first disclosed the cyber security incident on Oct. 15. Then, this month, a ransomware gang known as BlackCat/ALPHV said they encrypted the company’s systems and stole 35 TB of sensitive data. […]
Towns across America continue to fall prey to ransomware gangs. This week, the SuspectFile blog reported on how the AlphV gang, also known as “BlackCat,” started leaking files from the Town of Iowa in Louisiana: The ransomware group ALPHV (BlackCat) has published a first part of exfiltrated data from the Town of Iowa in the […]
Bloomberg reports that “Scattered Spider” may also be responsible for the recent attack on Clorox: A notorious group of hackers blamed for recent breaches on major casino companies is also suspected of being behind a recent cyberattack against Clorox Co. that has led to a nationwide shortage of its cleaning products. Officials suspect that “Scattered Spider” is […]
At least five class-action lawsuits were filed last week against the two Las Vegas entertainment giants following data breaches reportedly by the same group of threat actors. As Digital Insurance reports, Okta, an identity and access management company used by both firms, issued an advisory in August about hackers tricking IT service staff into resetting […]
As an article in DarkReading highlights, it’s tempting to compare the incident responses by MGM Resorts and Caesars Entertainment to their recent cyberattacks because both are the same kind of entity and both were victims of the same threat actors (Scattered Spider/AlphV). But: Caesars quickly negotiated with the cyberattackers, and handed over a $15 million ransom payout, which […]
MGM Resorts International could be losing between $4.2 million and $8.4 million in daily revenue and around $1 million in cash flow every day it’s under a cyberattack, a gaming industry analyst said in a Sunday report to investors. David Katz, an equity analyst with New York-based Jefferies Group, in a weekly report on gaming, […]
It’s not unusual for ransomware groups to comment on a victim’s incident response in a negative way. Nor is it unusual for these groups to carefully monitor media coverage. It is somewhat unusual, though, for a major group to get so angry at researchers or news outlets that they actually call them all out by […]
