Mastodawn

Elliptic said the tactics and laundering methods indicated it was likely North Korean hackers behind the $280 million theft from Drift

https://therecord.media/drift-crypto-confirms-280-million-stolen-north-korea

Drift crypto platform confirms $280 million stolen in hack as researchers point finger at North Korea

The platform released a post-mortem on Wednesday night explaining that malicious actors gained access to Drift systems through a “novel attack” that involved the “rapid takeover” of the company’s security council administrative powers.

Jon Greig 5d ago

Dissent Doe

Mar 23

NEW, by me:

3.7 Million Telehealth Patients Allegedly Affected By Two Recent Breaches

An individual calling himself "Stuckin2019" or just "Stuck" claims responsibility for attacks on OpenLoop Health and Zealthy.

The former has notified the California AG's Office, but the latter has not notified any regulator as far as I can determine, and they haven't responded to inquiries.

#databreach #healthsec #cybersecurity #OpenLoop #Zealthy #HIPAA

@campuscodi @euroinfosec @jgreig

Jon Greig 5d ago

Electronic health record company CareCloud told the SEC that a recent cyberattack "is material in light of the sensitivity of the potentially affected information and the potential consequences of the incident.”

https://therecord.media/carecloud-hack-data-breach-sec

Healthcare software firm CareCloud informs SEC of potential patient data leak

The healthcare software firm CareCloud warned the Securities and Exchange Commission that a cyberattack may have resulted in the leak of patient data.

Jon Greig Mar 27

The FBI confirmed to me that director Kash Patel's personal email was hacked by an Iranian group

A spox said the info is “historical in nature and involves no government information,” adding that they took "all necessary steps to mitigate potential risks."

https://therecord.media/fbi-confirms-theft-of-directors-personal-emails-iran-group

FBI confirms theft of director’s personal emails by Iran-linked hacking group

An FBI spokesperson told Recorded Future News that the information is “historical in nature and involves no government information,” adding that the agency has “taken all necessary steps to mitigate potential risks associated with this activity."

Jon Greig Mar 26

US officials claimed cyber scam compounds across SE Asia causing $16 billion in American losses each year are quietly backed by China's government

China has not prosecuted scam bosses targeting Americans and Belt + Road projects are used as scam centers. Scam funds have also commingled with Chinese gov't infrastructure investments

https://therecord.media/china-scam-compounds-southeast-asia

US official accuses China of supporting, exploiting cyber scam crisis in Southeast Asia

A senior U.S. official accused China’s government of implicitly backing Chinese criminal syndicates running cyber scam compounds across Southeast Asia and of exploiting a crisis that has resulted in billions being stolen from Americans each year.

Jon Greig Mar 25

LiteLLM has been compromised by hackers in a supply chain attack that researchers say could impact tens of thousands of corporate environments

Important one from Alex Martin

https://therecord.media/supply-chain-attack-hits-widely-used-ai-package

Supply chain attack hits widely-used AI package, risks impacting thousands of companies

The incident highlights growing concerns over the security of the open-source software supply chain, where widely-used tools maintained by small teams can provide a gateway into thousands of organizations if compromised.

Jon Greig Mar 25

Puerto Rican authorities continued investigating a cyberattack on Wednesday that forced them to cancel appointment's at the agency managing driver's licenses and permits

https://therecord.media/puerto-rico-gov-agency-cancels-driver-license-appointments-cyber-incident

Puerto Rico government agency cancels driver’s license appointments after cyberattack

Services at Centros de Servicios al Conductor (CESCO) — the agency responsible for issuing licenses, permits and vehicle registrations in Puerto Rico — cancelled all appointments due to a cyber incident.

Jon Greig Mar 25

In an update this week, Kaplan said 1.4 million people were impacted by a data breach in October

https://therecord.media/kaplan-data-breach-hack-notification

Education company Kaplan reports data breach impacting more than 230,000

The educational services company Kaplan told state regulators that at least 230,000 people had Social Security and driver’s license numbers leaked following a cybersecurity incident in the fall of 2025.

Jon Greig Mar 25

Iran's Pay2Key ransomware gang attacked another US healthcare firm before the Stryker wiper attack

Researchers said its likely other US organizations have been attacked by Iranian government-affiliated hacking groups

https://therecord.media/iran-linked-ransomware-gang-targeted-us-healthcare-org

Iran-linked ransomware gang targeted US healthcare org amid military conflict

The incident responders noted that there was no evidence that data was exfiltrated during the intrusion — an unusual development considering U.S. intelligence agencies previously said Pay2Key attacks were largely conducted for information theft.

Jon Greig Mar 24

Crunchyroll confirmed to The Record that a batch of customer information leaked online over the weekend is legitimate

They said the stolen info is "primarily limited to customer service ticket data following an incident with a third-party vendor."

https://therecord.media/crunchyroll-hacker-anime-data-theft

Anime streaming giant Crunchyroll says hacker stole data related to customer service tickets

The popular anime streaming platform Crunchyroll confirmed that a batch of customer information that was stolen through a third-party customer service vendor and leaked online is legitimate.