𝗡𝗼𝘃𝗮 𝗖𝗹𝗮𝗶𝗺𝘀 𝗔𝗰𝗰𝗲𝘀𝘀 𝘁𝗼 𝗡𝗦𝗪 𝗦𝘆𝘀𝘁𝗲𝗺𝘀: 𝗕𝗲𝘁𝘄𝗲𝗲𝗻 𝟰𝟬𝟬 𝗚𝗕 𝗘𝘅𝗳𝗶𝗹𝘁𝗿𝗮𝘁𝗲𝗱 𝗮𝗻𝗱 𝗗𝗮𝘁𝗮 𝗗𝗶𝘀𝗽𝘂𝘁𝗲𝗱 𝗯𝘆 𝗔𝘂𝘁𝗵𝗼𝗿𝗶𝘁𝗶𝗲𝘀

The story emerged in recent days via the 𝐍𝐨𝐯𝐚 𝐠𝐫𝐨𝐮𝐩’𝐬 𝐝𝐚𝐭𝐚 𝐥𝐞𝐚𝐤 𝐩𝐨𝐫𝐭𝐚𝐥, where the ransomware operators 𝗹𝗶𝘀𝘁𝗲𝗱 𝘁𝗵𝗲 𝗡𝗲𝘄 𝗦𝗼𝘂𝘁𝗵 𝗪𝗮𝗹𝗲𝘀 𝗴𝗼𝘃𝗲𝗿𝗻𝗺𝗲𝗻𝘁 among their alleged victims, claiming to have gained access to a hashtag #Citrix system and exfiltrated a significant amount of data.

https://www.suspectfile.com/nova-claims-access-to-nsw-systems-between-400-gb-exfiltrated-and-data-disputed-by-authorities/

#Citrix #Data_Breach #Nova #NSW #Ransomware

𝐄𝐯𝐞𝐫𝐞𝐬𝐭: 𝐒𝐢𝐱 𝐘𝐞𝐚𝐫𝐬 𝐨𝐟 𝐄𝐯𝐨𝐥𝐮𝐭𝐢𝐨𝐧 𝐟𝐫𝐨𝐦 𝐃𝐚𝐭𝐚 𝐋𝐞𝐚𝐤 𝐭𝐨 𝐃𝐨𝐮𝐛𝐥𝐞 𝐄𝐱𝐭𝐨𝐫𝐭𝐢𝐨𝐧 – 𝐭𝐡𝐞 𝐢𝐧𝐭𝐞𝐫𝐯𝐢𝐞𝐰

The responses provided to SuspectFile paint a picture of a group that claims to have grown gradually and demonstrated a consistent ability to adapt. One of the most interesting aspects concerns the shift from extortion based solely on stolen data to the adoption of encryption.

https://www.suspectfile.com/everest-six-years-of-evolution-from-data-leak-to-double-extortion-the-interview/

#ALPHV #Black_Basta #Double_Extortion #Everest #Hive #IAB #Interview #Ransomware

𝐒𝐢𝐧𝐠𝐢𝐧𝐠 𝐑𝐢𝐯𝐞𝐫 𝐇𝐞𝐚𝐥𝐭𝐡 𝐒𝐲𝐬𝐭𝐞𝐦: 𝐁𝐞𝐭𝐰𝐞𝐞𝐧 𝐑𝐚𝐧𝐬𝐨𝐦𝐰𝐚𝐫𝐞, 𝐋𝐞𝐠𝐚𝐥 𝐃𝐢𝐬𝐩𝐮𝐭𝐞𝐬, 𝐚𝐧𝐝 𝐑𝐞𝐜𝐮𝐫𝐫𝐢𝐧𝐠 𝐕𝐮𝐥𝐧𝐞𝐫𝐚𝐛𝐢𝐥𝐢𝐭𝐢𝐞𝐬

Just over two years after the devastating ransomware attack attributed to the Rhysida group, Singing River Health System (SRHS) has once again fallen victim to cybercrime. This time, the Anubis ransomware group has claimed responsibility for compromising the healthcare organization’s IT systems, stating that it stole sensitive data belonging to patients and employees before encrypting the infrastructure.

https://www.suspectfile.com/singing-river-health-system-between-ransomware-legal-disputes-and-recurring-vulnerabilities/

#Anubis #Data_Breach #HIPAA #PII #PHI #Ransomware #Rhysida #Singing #SRHS

𝐀𝐫𝐦𝐞𝐧𝐢𝐚: 𝐁𝐚𝐬𝐡𝐞 𝐂𝐥𝐚𝐢𝐦𝐬 𝐭𝐨 𝐇𝐚𝐯𝐞 𝐏𝐮𝐫𝐜𝐡𝐚𝐬𝐞𝐝 𝐚 𝐃𝐚𝐭𝐚𝐛𝐚𝐬𝐞 𝐨𝐟 𝐌𝐨𝐫𝐞 𝐓𝐡𝐚𝐧 𝟑𝟎,𝟎𝟎𝟎 𝐕𝐨𝐭𝐞𝐫𝐬 𝐟𝐫𝐨𝐦 𝐚 𝐏𝐫𝐨-𝐓𝐮𝐫𝐤𝐢𝐬𝐡 𝐆𝐫𝐨𝐮𝐩

Just a few days before the Armenian parliamentary elections on June 7, 2026, the Bashe ransomware group, formerly known as APT73, published an announcement on its blog claiming to have obtained a database containing information on 30,074 Armenian citizens eligible to vote.

According to the group, the database was purchased from “Wolves of Turan”, a pro-Turkish hacktivist group that, according to the actors involved, has long been targeting Armenian entities.

https://www.suspectfile.com/armenia-bashe-claims-to-have-purchased-a-database-of-more-than-30000-voters-from-a-pro-turkish-group/

#Armenia_elections #Armenian_Ministry_of_Internal_Affairs #Bashe #Wolves_of_Turan

𝐔𝐧𝐢𝐯𝐞𝐫𝐬𝐢𝐭𝐚𝐭 𝐝𝐞 𝐕𝐚𝐥𝐞̀𝐧𝐜𝐢𝐚 𝐓𝐚𝐫𝐠𝐞𝐭𝐞𝐝 𝐛𝐲 𝐍𝐨𝐯𝐚 𝐆𝐫𝐨𝐮𝐩: 𝟑𝟎𝟎𝐆𝐁 𝐃𝐚𝐭𝐚 𝐄𝐱𝐟𝐢𝐥𝐭𝐫𝐚𝐭𝐢𝐨𝐧 𝐂𝐥𝐚𝐢𝐦𝐞𝐝, 𝐈𝐧𝐢𝐭𝐢𝐚𝐥 $𝟓𝟎𝟎,𝟎𝟎𝟎 𝐑𝐚𝐧𝐬𝐨𝐦 𝐃𝐞𝐦𝐚𝐧𝐝 𝐑𝐞𝐯𝐞𝐚𝐥𝐞𝐝

News of the attack was initially reported by the online newspaper Escudo Digital in an article by journalist Alberto Payo, which included statements attributed to a member of the university’s IT team. These details are now complemented by statements provided exclusively to SuspectFile.com directly by the Nova group, introducing additional information that had not previously emerged publicly, including an alleged initial ransom demand of $500,000.

https://www.suspectfile.com/universitat-de-valencia-targeted-by-nova-group-300gb-data-exfiltration-claimed-initial-500000-ransom-demand-revealed/

#Data_Breach #Data_Exfiltration #Nova #Ransomoware #Universitat_de_València

𝐒𝐢𝐧𝐜𝐞 𝐖𝐡𝐞𝐧 𝐃𝐢𝐝 𝐀𝐬𝐤𝐢𝐧𝐠 𝐟𝐨𝐫 𝐄𝐯𝐢𝐝𝐞𝐧𝐜𝐞 𝐁𝐞𝐜𝐨𝐦𝐞 “𝐃𝐞𝐟𝐞𝐧𝐝𝐢𝐧𝐠 𝐂𝐫𝐢𝐦𝐢𝐧𝐚𝐥𝐬”?

Dissent responded harshly to these accusations, firmly rejecting any insinuation of collusion with criminal groups. The journalist pointed out that every time she asks for evidence to support certain claims, she is labeled “criminal-friendly” or accused of being a mouthpiece for cybercriminals, simply for refusing to uncritically accept statements lacking public verification.

https://www.suspectfile.com/since-when-did-asking-for-evidence-become-defending-criminals/

#Canvas #Data_Breach #Instructure #Navigate360 #Ransom #ShinyHunters

𝐑𝐚𝐧𝐬𝐨𝐦𝐰𝐚𝐫𝐞, 𝐓𝐫𝐚𝐧𝐬𝐩𝐚𝐫𝐞𝐧𝐜𝐲, 𝐚𝐧𝐝 𝐈𝐧𝐯𝐢𝐬𝐢𝐛𝐥𝐞 𝐕𝐢𝐜𝐭𝐢𝐦𝐬: 𝐃𝐢𝐬𝐬𝐞𝐧𝐭 𝐑𝐞𝐬𝐩𝐨𝐧𝐝𝐬 𝐭𝐨 𝐭𝐡𝐞 𝐈𝐧𝐬𝐭𝐫𝐮𝐜𝐭𝐮𝐫𝐞 𝐂𝐚𝐬𝐞

A recent article published by DataBreaches.net by journalist Dissent addresses one of the most controversial issues in modern cybersecurity: the payment of ransoms following a cyberattack and the consequences such decisions can have not only on the companies involved, but also on the individuals whose data has been compromised.

https://www.suspectfile.com/ransomware-transparency-and-invisible-victims-dissent-responds-to-the-instructure-case/

#Canvas #Data_Breach #Instructure #Navigate360 #Ransom #Ransomware #ShinyHunters