October 26, 2022

Medibank confirm that a ransomware group accessed all its customers’ personal data

On Wednesday 12th of October 2022, one of Australia’s largest private health insurance providers, Medibank Private Limited identified unusual activity which was discovered to be a precursor to a ransomware attack. In response, Medibank immediately took down parts of its IT systems to contain the threat and therefore disrupted its online services. “Our ongoing investigation has found the unusual activity […]
September 28, 2022

Bl00Dy Ransomware Gang seen using Leaked LockBit 3.0 builder

Recently, the Bl00Dy Ransomware Gang has been observed using a recently leaked LockBit ransomware builder in attacks against companies. The Bl00Dy Ransomware Gang was first observed operating around May 2022, when they were targeting a group of medical and dental practices in New York. Last week, the LockBit 3.0 ransomware builder was leaked on Twitter after a fallout between a […]
September 20, 2022

A cyberattack against New York Racing Association claimed by the Hive ransomware gang

On Monday 19th of September 2022, the Hive ransomware gang claimed responsibility for an cyberattack that impacted the IT operations of the New York Racing Association (NYRA). The incident also impacted their website availability and has resulted in member data being compromised. On Friday 9th of September 2022, NYRA released a security breach notification that revealed that the threat actors […]
September 17, 2022

New York-based Empress Emergency Medical Services discloses data breach after ransomware attack

On Thursday 14th of July 2022, Empress Emergency Medical Services (EMS), emergency response and ambulance service provider based in New York suffered a ransomware attack. An investigation into the incident revealed that the threat actor had gained access to Empress EMS’ systems on Thursday 26th of May, 2022. The threat actor stayed in their systems until Wednesday 13th of July 2022, […]
August 23, 2022

French hospital sends patients elsewhere after $10M ransomware attack

On Sunday 21st of August 2022, the Center Hospitalier Sud Francilien (CHSF), a 1000-bed hospital located 28km from the center of Paris, suffered a cyberattack which has resulted in the medical centre referring patients to other establishments and postponing appointments for surgeries. The hospital’s administration has not provided further updates on the situation, and the IT system outage is still […]
August 11, 2022

UK NHS services still recovering after ransomware attack against British MSP

On Thursday 4th of August 2022, Advanced, a British managed service provider (MSP) suffered a ransomware attack that occurred in the early morning. The incident resulted in seven of the solutions that Advanced offer being impacted. One of Advanced’s main customers was United Kingdom’s National Health Service (NHS) where emergency services (111) were disrupted due to the incident. When the […]
April 26, 2022

New Black Basta ransomware gang attacks the American Dental Association

On Friday 22nd of April 2022, American Dental Association (ADA) suffered a ransomware attack that resulted in ADA having to take their affected systems offline, which disrupted various online services, telephones, email, and webchat. It has been detailed in an email sent to ADA members, that soon after the discovery of the attack, ADA immediately responded to the incident by […]
December 3, 2021

Ontario family support charity learns of ransomware incident after threat actors send emails targeting clients

On Thursday 2nd of December 2021, Social Enterprise for Canada (SEC), a Southern Ontario charity that offers family services announced they had learned they has been a target of a ransomware attack on Tuesday, 23rd of November 2021 which resulted in some of the servers supporting their email and IT systems being affected. They were alerted to the incident when it […]
November 12, 2021

Customers urged to change passwords after German medical software vendor Medatixx experiences ransomware attack

On Friday 12th of November 2021, Medatixx, a German medical software vendor who provides medical software to over 21,000 health institutions, announced they had experienced a ransomware attack which has led to their operations being shut down. Shortly after the attack, they urged their customers and users to change their application passwords and passwords to all their workstations and servers […]