A hidden but increasingly widespread phenomenon. Some negotiators in the cybersecurity field end up profiting even from the pockets of attackers.
| #DataTheft #Ransomware #DataBreach | https://www.suspectfile.com |
amvinfe
@amvinfe@infosec.exchange
- 79 Followers
- 33 Following
- 217 Posts
Cyber security researcher and blogger
Dissent Doe 
McLaren provides written notice to 743,131 patients after ransomware attack in July 2024:
#HealthSec #databreach #encryption #extortion #transparency #incidentresponse
This was their second ransomware attack in a year. Personal injury lawyers are already recruiting plaintiffs.
Update: Asheville Eye Associates, Attorneys General in Several U.S. States Notified Following November 2024 Ransomware Attack. Data Breach May Involve 147,116 Individuals
The San Jose Country Club, a prestigious private club located in San Jose, California, is reported to have been the victim of a cyberattack carried out by the ransomware group #Medusa.
https://www.suspectfile.com/data-breach-at-san-jose-country-club-claimed-by-medusa-ransomware-group/
In light of the publication of the new federal report, SuspectFile.com reached out directly to the group Silent, obtaining a written statement structured in fifteen answers.
https://www.suspectfile.com/silent-ransomware-group-the-interview/
Cybersecurity researcher https://infosec.exchange/@JayeLTee recently uncovered a significant data exposure involving the Italian branch of Leroy Merlin. According to his Substack article, approximately 20,000 files were publicly accessible via an unauthenticated cloud storage bucket.
Victim Pays $800,000 in Bitcoin—But the Chat Was Not Private as Claimed by Akira.
Precisely because Akira did not preserve the anonymity of the chat, the victim’s name was recognizable even through the file list.7z, a text-format archive containing the file tree of the exfiltrated data.
The case of a New Jersey-based company reminds us that paying a ransom doesn’t guarantee data deletion or the protection of corporate identity, despite attackers’ promises.
https://www.suspectfile.com/akira-ransomware-when-paying-isnt-enough-to-stay-anonymous/
The group stressed that these vulnerabilities reflect systemic weaknesses across the API infrastructure rather than isolated issues at individual properties. They reported gaining entry via the system of a partner hotel integrated through HyperGuest’s API, requiring no advanced exploitation methods, underscoring poor network segmentation and insufficient access controls.
#jparkresort #HyperGuest #Stormous #Data_Breach #Ransomware #Infosec
A new case of cybercrime has allegedly affected the early childhood support sector in the United States. The ransomware group known as Medusa has claimed responsibility for an attack against the Russell Child Development Center (RCDC), an organization based in Kansas that provides developmental, educational, health, and family support services.
