gang
-
Blog
Cyber attack that shut down schools in New Mexico claimed by ransomware gang
Ransomware gang Interlock today claimed responsibility for a February 2025 cyber attack on the Aztec Municipal School District in New Mexico. The school district announced a network outage on February 24, 2025 forced schools to cancel classes. It reopened on March 3, 2025, but as of time if writing, the district is still recovering systems and restricting access to the…
Read More » -
Blog
Ransomware gang says it hacked the Virginia Attorney General
Ransomware gang Cloak today claimed responsibility for a February 2025 cyber attack on the attorney general of Virginia. In February, the attorney general was hit by a cyber attack that prompted officials to shut down computer systems including email, VPN, internet access, and the AG’s website, according to the Washington Post. Employees were forced to file paper documents instead of…
Read More » -
Blog
Ransomware gang says it hacked Klickitat Valley Health, stole SSNs and PHI
Ransomware gang Kraken today claimed responsibility for a February 2025 data breach at Klickitat Valley Health in Washington. The breach compromised the following patient info: Names Social Security numbers Health insurance info Medical record numbers Patient account numbers Dates of birth Addresses Dates of service Physician names and departments Diagnoses Other treatment info Klickitat Valley Health has not verified Kraken’s…
Read More » -
Blog
Pennsylvania State Education Association notifies 500K people of data breach claimed by ransomware gang
The Pennsylvania State Education Association this week confirmed it notified 517,487 people of a July 2024 data breach that compromised the following personal info: Names Social Security numbers Account numbers and PINs Security codes Passwords Routing numbers Credit/debit card numbers, PINs, and expiration dates Passport numbers Taxpayer ID numbers Usernames Health insurance info Medical info Dates of birth Drivers license…
Read More » -
Blog
Ransomware gang says it hacked the Cleveland Municipal Court
Ransomware gang Qilin today claimed responsibility for a February 23, 2025 cyber attack on the Cleveland Municipal Court. The court immediately shut down all operations and reopened on March 12, 2025. Now three weeks later, the court is still struggling to resume normal operations. Employees report being unable to access the internet and court computer systems. Background checks have been…
Read More » -
Blog
Ransomware gang creates tool to automate VPN brute-force attacks
The Black Basta ransomware operation created an automated brute-forcing framework dubbed ‘BRUTED’ to breach edge networking devices like firewalls and VPNs. The framework has enabled BlackBasta to streamline initial network access and scale ransomware attacks on vulnerable internet-exposed endpoints. The discovery of BRUTED comes from EclecticIQ researcher Arda Büyükkaya following an in-depth examination of the ransomware gang’s leaked internal chat…
Read More » -
Blog
Ransomware gang says it stole 138,000 patients’ data from New York City radiologist
Ransomware group Fog today claimed responsibility for a November 2024 data breach at University Diagnostic Medical Imaging that compromised 138,080 patients’ names, addresses, dates of birth, referring physicians, medical treatments, and diagnoses. Fog says it stole 28.1 GB of data from UDMI. UDMI started notifying patients in January 2025 of the breach, but it has not verified Fog’s claim. We…
Read More » -
Blog
A ransomware gang says it stole SSNs, credit cards and more from a Christian seminary in Kentucky
The Asbury Theological Seminary in Wilmore, Kentucky yesterday confirmed it notified 888 Texans and 55 Massachusettsans of a June 2024 data breach that compromised a trove of sensitive personal and financial info. More victims will likely be reported soon as other states disclose breach figures for their own residents. The compromised data includes: Names Social Security numbers Credit and/or debit…
Read More » -
Blog
Ransomware gang encrypted network from a webcam to bypass EDR
The Akira ransomware gang was spotted using an unsecured webcam to launch encryption attacks on a victim’s network, effectively circumventing Endpoint Detection and Response (EDR), which was blocking the encryptor in Windows. Cybersecurity firm S-RM team discovered the unusual attack method during a recent incident response at one of their clients. Notably, Akira only pivoted to the webcam after attempting to…
Read More » -
Blog
Ransomware gang says it hacked a Virginia school district, stole data
Ransomware gang Fog yesterday claimed responsibility for a February 2025 data breach at Williamsburg-James City County Schools in Virginia. The group is demanding an undisclosed amount be paid in ransom in exchange for stolen data. WJCC announced it was hit by a cyber attack on February 9 and that systems were restored by February 14. An investigation of the attack…
Read More »