amvinfe

@[email protected]
106 Followers
42 Following
316 Posts
Cyber security researcher and blogger
#InfoSec #DataTheft #Ransomware #DataBreachhttps://www.suspectfile.com
amvinfe2h ago

𝗚𝗹𝗼𝗯𝗮𝗹 𝗦𝗰𝗵𝗼𝗼𝗹𝘀 𝗚𝗿𝗼𝘂𝗽 𝗮𝗻𝗱 𝗙𝘂𝗹𝗰𝗿𝘂𝗺𝗦𝗲𝗰: 𝗔 𝗠𝗮𝘀𝘀𝗶𝘃𝗲 𝗗𝗮𝘁𝗮 𝗕𝗿𝗲𝗮𝗰𝗵 𝗮𝗻𝗱 𝘁𝗵𝗲 𝗪𝗼𝗿𝗹𝗱𝘄𝗶𝗱𝗲 𝗣𝘂𝘀𝗵 𝘁𝗼 𝗦𝘂𝗽𝗽𝗿𝗲𝘀𝘀 𝗥𝗲𝗽𝗼𝗿𝘁𝗶𝗻𝗴 𝗼𝗻 𝗜𝘁

Among the statements attributed to FulcrumSec are allegations of particularly poor security practices. The group claims to have identified administrative credentials reused across numerous systems, passwords stored in plaintext, #AWS access keys embedded directly within application code, and databases relying on credentials that had reportedly remained unchanged for years.

https://www.suspectfile.com/global-schools-group-and-fulcrumsec-a-massive-data-breach-and-the-worldwide-push-to-suppress-reporting-on-it/

#Data_Breach #FulcrumSec #Global_Schools_Group #GSG #LedgerWraith #Ransomware

Show threadamvinfe2d ago

@PogoWasRight @verisizintisi @jerry @JayeLTee

No, no one responded to me, but at least the article was removed. It's definitely the most sensible thing they could have done, given that it was based entirely on inaccurate data. Correcting it would have been pointless because they would have had to completely rewrite it.

Show threadamvinfe3d ago
@PogoWasRight I think the amount they wanted to ask for... it seems a little excessive and disproportionate to me... I think :)
amvinfe3d ago

𝗡𝗼𝘃𝗮 𝗖𝗹𝗮𝗶𝗺𝘀 𝗔𝗰𝗰𝗲𝘀𝘀 𝘁𝗼 𝗡𝗦𝗪 𝗦𝘆𝘀𝘁𝗲𝗺𝘀: 𝗕𝗲𝘁𝘄𝗲𝗲𝗻 𝟰𝟬𝟬 𝗚𝗕 𝗘𝘅𝗳𝗶𝗹𝘁𝗿𝗮𝘁𝗲𝗱 𝗮𝗻𝗱 𝗗𝗮𝘁𝗮 𝗗𝗶𝘀𝗽𝘂𝘁𝗲𝗱 𝗯𝘆 𝗔𝘂𝘁𝗵𝗼𝗿𝗶𝘁𝗶𝗲𝘀

The story emerged in recent days via the 𝐍𝐨𝐯𝐚 𝐠𝐫𝐨𝐮𝐩’𝐬 𝐝𝐚𝐭𝐚 𝐥𝐞𝐚𝐤 𝐩𝐨𝐫𝐭𝐚𝐥, where the ransomware operators 𝗹𝗶𝘀𝘁𝗲𝗱 𝘁𝗵𝗲 𝗡𝗲𝘄 𝗦𝗼𝘂𝘁𝗵 𝗪𝗮𝗹𝗲𝘀 𝗴𝗼𝘃𝗲𝗿𝗻𝗺𝗲𝗻𝘁 among their alleged victims, claiming to have gained access to a hashtag #Citrix system and exfiltrated a significant amount of data.

https://www.suspectfile.com/nova-claims-access-to-nsw-systems-between-400-gb-exfiltrated-and-data-disputed-by-authorities/

#Citrix #Data_Breach #Nova #NSW #Ransomware

amvinfe3d ago
Dissent Doe  3d ago

UK: More than one year later, HCRG is first notifying patients of a ransomware attack:

https://databreaches.net/2026/06/18/uk-more-than-one-year-later-hcrg-is-first-notifying-patients-of-ransomware-attack/

This is the one where they ran to the High Court in the UK to get injunctions that their lawyers sent to @amvinfe and me.

It seems they are first notifying patients now -- 16 months after the attack.

#healthsec #cybersecurity #incidentresponse #HCRG #injunction
#databreach #ransomware

amvinfe3d ago

@verisizintisi @PogoWasRight @jerry @JayeLTee

Hi, I read your article on HCRG and I think you may be mistaken about some of your writing.
In one passage, you write, "The entity directly affected by the attack is CRG Medical Services, a subsidiary of HCRG that provides forensic medical services to police forces."
Can I ask where you got this information? Has it been verified by you?
If it has been verified, can you provide evidence?
I think, I'm sure, you're mistaken ;)

Show threadamvinfe5d ago

@PogoWasRight @campuscodi @euroinfosec @jgreig @lorenzofb @ajvicens

Really a great article my friend, really great 👍

amvinfe5d ago
Dissent Doe  5d ago

NEW by me:

One threat actor demanded $50 million from Novo Nordisk. Another one demanded $25 million. Neither got paid.

Two different groups tried to extort Novo Nordisk at around the same time. Novo Nordisk strung them both along, and then went dark.

Data leaks followed.

https://databreaches.net/2026/06/16/one-threat-actor-demanded-50-million-from-novo-nordisk-another-one-demanded-25-million-neither-got-paid/

#NovoNordisk #FulcrumSec #TheUSERS007 #hackandleak #extortion #AI #databreach #infosec #cybersecurity

@campuscodi @euroinfosec @jgreig @lorenzofb @ajvicens @amvinfe

amvinfe5d ago
Dissent Doe  6d ago

New by me:

Scoop: FulcrumSec Leaks Novo Nordisk Data After $25M Demand Goes Unpaid

https://databreaches.net/2026/06/15/scoop-fulcrumsec-leaks-novo-nordisk-data-after-25m-demand-goes-unpaid/

#novonordisk #FulcrumSec #hackandleak #infosec #cybersecurity #databreach #intellectualproperty

@campuscodi @dangoodin @zackwhittaker @euroinfosec @amvinfe @briankrebs @lawrenceabrams

amvinfeJun 11

𝐄𝐯𝐞𝐫𝐞𝐬𝐭: 𝐒𝐢𝐱 𝐘𝐞𝐚𝐫𝐬 𝐨𝐟 𝐄𝐯𝐨𝐥𝐮𝐭𝐢𝐨𝐧 𝐟𝐫𝐨𝐦 𝐃𝐚𝐭𝐚 𝐋𝐞𝐚𝐤 𝐭𝐨 𝐃𝐨𝐮𝐛𝐥𝐞 𝐄𝐱𝐭𝐨𝐫𝐭𝐢𝐨𝐧 – 𝐭𝐡𝐞 𝐢𝐧𝐭𝐞𝐫𝐯𝐢𝐞𝐰

The responses provided to SuspectFile paint a picture of a group that claims to have grown gradually and demonstrated a consistent ability to adapt. One of the most interesting aspects concerns the shift from extortion based solely on stolen data to the adoption of encryption.

https://www.suspectfile.com/everest-six-years-of-evolution-from-data-leak-to-double-extortion-the-interview/

#ALPHV #Black_Basta #Double_Extortion #Everest #Hive #IAB #Interview #Ransomware