Information Security, Insurance and Ransomware

Change Healthcare Breach Hits 100M Americans

Krebs on Security

OCTOBER 30, 2024

Change Healthcare says it has notified approximately 100 million Americans that their personal, financial and healthcare records may have been stolen in a February 2024 ransomware attack that caused the largest ever known data breach of protected health information. Image: Tamer Tuncay, Shutterstock.com. million individuals.

Healthcare

Healthcare Insurance Computers and Electronics Data breaches

Black Basta ransomware gang hit BT Group

Security Affairs

DECEMBER 4, 2024

BT Group (formerly British Telecom)’s Conferencing division shut down some of its servers following a Black Basta ransomware attack. British multinational telecommunications holding company BT Group (formerly British Telecom) announced it has shut down some of its servers following a Black Basta ransomware attack. reads the CSA.

Ransomware

Ransomware Telecommunications Healthcare Insurance

Ransomhub ransomware gang claims the hack of Mexican government Legal Affairs Office

Security Affairs

NOVEMBER 21, 2024

Mexico is investigating a ransomware attack targeting its legal affairs office, as confirmed by the president amidst growing cybersecurity concerns. Mexico’s president announced the government is investigating an alleged ransomware hack that targeted the administration’s legal affairs office. Knight, also known as Cyclops 2.0,

Government

Government Hacking Ransomware Insurance

Healthcare Now Third-Most Targeted Industry for Ransomware

SecureWorld News

NOVEMBER 14, 2024

Ransomware attacks on healthcare organizations have sharply increased in 2024, as shown by recent research from Safety Detectives. Compared to 2023, healthcare providers are facing a higher frequency of ransomware incidents, impacting their ability to deliver essential services and protect sensitive patient data. Louis, Missouri.

Healthcare

Healthcare Ransomware Identity Theft Data breaches

Great Plains Regional Medical Center ransomware attack impacted 133,000 individuals

Security Affairs

NOVEMBER 18, 2024

A ransomware attack on Great Plains Regional Medical Center compromised personal data of 133,000 individuals, exposing sensitive information. On September 8, 2024, Great Plains Regional Medical Center (Oklahoma) suffered a ransomware attack. “On September 8, 2024, we suffered a ransomware attack on our computer system.

Ransomware

Ransomware Insurance Encryption Healthcare

Insurance firm CNA discloses data breach after March ransomware attack

Security Affairs

JULY 9, 2021

Insurance giant CNA notifies customers of a data breach after the Phoenix CryptoLocker ransomware attack suffered in March. US insurance giant CNA is notifying customers of a data breach after the ransomware attack that it suffered in March. Bloomberg was informed about the payment by two people familiar with the attack.

Data breaches

Data breaches Insurance Ransomware Identity Theft

HardBit ransomware demands ransom based on insurance cover

CyberSecurity Insiders

FEBRUARY 21, 2023

All these days we have read about ransomware spreading groups stealing data and then threatening to release it online, if the victim fails to pay heed to their demands. But now a new file encrypting malware variant has emerged onto the block that demands ransom, based on the insurance cover.

Insurance

Insurance Ransomware Cyber Insurance Encryption

Arthur J. Gallagher (AJG) insurance giant discloses ransomware attack

Security Affairs

SEPTEMBER 29, 2020

Gallagher (AJG) insurance giant disclosed a ransomware attack, the security breach took place on Saturday. Gallagher (AJG) global insurance brokerage firm confirmed that it was his with a ransomware attack on Saturday, September 26. US-based Arthur J. The company is currently ranked 429 on the Fortune 500 list.

Insurance

Insurance Ransomware Advertising Data breaches

Interlock ransomware gang started leaking data allegedly stolen from leading kidney dialysis firm DaVita

Security Affairs

APRIL 25, 2025

The Interlock ransomware gang claimed responsibility for the attack on the leading kidney dialysis company DaVita and leaked alleged stolen data. Theyve activated contingency plans and manual procedures where necessary and are working to securely restore affected systems. The DaVita network was encrypted by InterLock Ransomware.

Ransomware

Ransomware Encryption Insurance Marketing

Change Healthcare data breach exposed the private data of over half the U.S.

Security Affairs

JANUARY 26, 2025

In early March, the Alphv/BlackCat ransomware gang claimed responsibility for the attack and added the company to its Tor leak site. A month later, a second ransomware gang, the RansomHub group, also attempted to extort the healthcare company. According to the Associated Press, UnitedHealth booked $1.1 population.”

Healthcare

Healthcare Data breaches Insurance Cybercrime

2023 Anna Jaques Hospital data breach impacted over 310,000 people

Security Affairs

DECEMBER 8, 2024

Anna Jaques Hospital revealed thatthe ransomware attack it suffered last year has exposed sensitive health data for over 316,000 patients. On December 25, 2023, a ransomware attack hit the Anna Jaques Hospital. The hospital revealed that the security breach exposed sensitive health data for over 316,000 patients.

Data breaches

Data breaches Insurance Healthcare Ransomware

The Hidden Cost of Ransomware: Wholesale Password Theft

Krebs on Security

JANUARY 6, 2020

Organizations in the throes of cleaning up after a ransomware outbreak typically will change passwords for all user accounts that have access to any email systems, servers and desktop workstations within their network. VCPI) was hit by the Ryuk ransomware strain. In mid-November 2019, Wisconsin-based Virtual Care Provider Inc.

Passwords

Passwords Ransomware Password Management Malware

Change Healthcare data breach impacted over 100 million people

Security Affairs

OCTOBER 25, 2024

In early March, the Alphv/BlackCat ransomware gang claimed responsibility for the attack and added the company to its Tor leak site. A month later, a second ransomware gang, the RansomHub group, also attempted to extort the healthcare company. According to the Associated Press, UnitedHealth booked $1.1

Data breaches

Data breaches Healthcare Cybercrime Insurance

Health insurer Point32Health suffered a ransomware attack

Security Affairs

APRIL 23, 2023

Non-profit health insurer Point32Health suffered a ransomware attack and has taken systems offline in response to the incident. Non-profit health insurer Point32Health has taken systems offline in response to a ransomware attack that took place on April 17. ” reads the statement published by the insurer.

Insurance

Insurance Ransomware Education Accountability

Merck settles with insurers regarding a $1.4 billion claim over NotPetya damages

Security Affairs

JANUARY 6, 2024

Merck has resolved a dispute with insurers regarding a $1.4 Merck and its insurers have agreed with a $1.4 billion insurance claim for the losses caused by the NotPetya attack that took place in 2017. Merck had not taken out specific insurance to cover cyber attacks, it only had insurance coverage against general risks.

Insurance

Insurance Manufacturing Ransomware Healthcare

How the ransomware explosion is reshaping the cyber insurance market

SC Magazine

MAY 19, 2021

Today’s special columnist, Scott Register of Keysight Technologies, says government and industry must come together to secure the nation’s critical infrastructure in the wake of the Colonial Pipeline hack. That in itself has evolved, as insurers and insured learn just how expensive that fallout can be.

Insurance

Insurance Cyber Insurance Marketing Ransomware

Security Blueprints of Many Companies Leaked in Hack of Swedish Firm Gunnebo

Krebs on Security

OCTOBER 28, 2020

In March 2020, KrebsOnSecurity alerted Swedish security giant Gunnebo Group that hackers had broken into its network and sold the access to a criminal group which specializes in deploying ransomware. He declined to comment on the particulars of the extortion incident.

Hacking

Hacking Ransomware Banking Accountability

Nova Scotia Power confirms it was hit by ransomware attack but hasn’t paid the ransom

Security Affairs

MAY 27, 2025

Nova Scotia Power confirms it was hit by a ransomware attack but hasn’t paid the ransom, nearly a month after first disclosing the cyberattack. Nova Scotia Power confirmed it was hit by a ransomware attack nearly a month after disclosing a cyber incident. The company revealed it hasnt paid the ransom. Nova Scotia Power Inc.

Energy and Utilities

Energy and Utilities Ransomware Data breaches Accountability

Medusa ransomware hit over 300 critical infrastructure organizations until February 2025

Security Affairs

MARCH 13, 2025

The Medusa ransomware operation hit over 300 organizations in critical infrastructure sectors in the United States until February 2025. The FBI, CISA, and MS-ISAC have issued a joint advisory detailing Medusa ransomware tactics, techniques, and indicators of compromise (IOCs) based on FBI investigations as recent as February 2025.

Ransomware

Ransomware Encryption Cryptocurrency Insurance

HardBit ransomware gang adjusts their demands so the insurance company would cover the ransom cost

Security Affairs

FEBRUARY 21, 2023

Recently emerged HardBit ransomware gang adjusts their demands so the insurance company would cover the ransom cost. The HardBit ransomware group first appeared on the threat landscape in October 2022, but unlike other ransomware operations, it doesn’t use a double extortion model at this time. Very important!

Insurance

Insurance Ransomware Cyber Insurance Malware

University of Utah pays a $457,000 ransom to ransomware gang

Security Affairs

AUGUST 21, 2020

The University of Utah admitted to have paid a $457,059 ransom in order to avoid having ransomware operators leak student information online. The university did not reveal the ransomware family involved in the attack. ” According to the University, the ransomware encrypted only 0.02% of the data stored on its servers.

Ransomware

Ransomware Cyber Insurance Insurance Advertising

Packaging giant WestRock is still working to resume after recent Ransomware Attack

Security Affairs

FEBRUARY 6, 2021

Packaging giant WestRock revealed this week that the recent ransomware attack impacted the company’s IT and operational technology (OT) systems. WestRock did not share details about the security incident, it only confirmed that its staff discovered the attack on January 23. ” reads the press release published by the company.

Ransomware

Ransomware Insurance Cyber Insurance Technology

Safety first: Will insurance companies stall or accelerate cybersecurity progress?

SC Magazine

FEBRUARY 8, 2021

Every time a driver buckles up or an airbag is deployed we see the powerful influence of the insurance companies who insisted those measures become mandatory. Now, those insurers are poised to drive cybersecurity investment by insisting that organizations meet certain criteria to qualify for coverage. A maturing model.

Insurance

Insurance Cyber Insurance Cybersecurity Government

McLaren Health Care data breach impacted over 743,000 people

Security Affairs

JUNE 23, 2025

The ransomware attack that hit McLaren Health Care in 2024 exposed the personal data of 743,000 individuals. The information that could have been involved includes name, Social Security number, driver’s license number, medical information, and health insurance information.”

Data breaches

Data breaches Insurance Identity Theft Ransomware

Cyber Insurance and the Changing Global Risk Environment

Security Affairs

APRIL 22, 2022

When security fails, cyber insurance can become crucial for ensuring continuity. The events of the past two years have made this shift clear: from ransomware attacks to the challenges of managing distributed workforces, digital risk is different. When security fails, cyber insurance can become crucial for ensuring continuity.

Cyber Insurance

Cyber Insurance Insurance Risk Technology

Maze Ransomware leaks files of ST Engineering group

Security Affairs

JUNE 5, 2020

ST Engineering is the last victim of the Maze Ransomware operators that published their data on their leak website. The Maze ransomware operators announced the release of stolen data on their leak site. SecurityAffairs – Maze ransomware, cybersecurity). ” reads the post published by the experts. Pierluigi Paganini.

Engineering

Engineering Ransomware Cyber Insurance Insurance

Omni Family Health data breach impacts 468,344 individuals

Security Affairs

OCTOBER 18, 2024

.” The data breach at Omni Family Health may have exposed varying personal information for current and former patients, including names, addresses, Social Security numbers, dates of birth, health insurance details, and medical information. The group claimed to have stolen 2.7

Data breaches

Data breaches Healthcare Insurance Engineering

The Financial Dynamics Behind Ransomware Attacks

Security Affairs

JUNE 18, 2024

Over the last few years, ransomware attacks have become one of the most prevalent and expensive forms of cybercrime. Today, this tactic has evolved, where ransomware operators in nearly every case first exfiltrate sensitive data and then threaten to publicly expose it if a ransom demand is not paid.

Ransomware

Ransomware Cryptocurrency Insurance Cybercrime

Richmond University Medical Center data breach impacted 674,033 individuals

Security Affairs

JANUARY 3, 2025

Richmond University Medical Center has confirmed that a ransomware attack in May 2023 affected 670,000 individuals. New York’s Richmond University Medical Center confirmed a May 2023 ransomware attack impacted 674,033 individuals. In May 2023, RUMC suffered a ransomware attack that caused a multi-week disruption.

Data breaches

Data breaches Ransomware Insurance Healthcare

How MFA and Cyber Liability Insurance Effectively Manage Risk in Higher Education

Duo's Security Blog

OCTOBER 18, 2021

One area where campuses have been collaborating recently are changes around cyber liability insurance for higher education, an opportunity for campus cybersecurity teams to combine forces with their risk management team. In a recent Duo blog post, we gave an overview of cyber liability insurance. Higher education campuses in the U.S.

Insurance

Insurance Education Risk Cyber Insurance

As market for cyber insurance booms, watchdog calls for better data

SC Magazine

MAY 24, 2021

In a report released May 20, the Government Accountability Office looked at how the private cybersecurity insurance market has developed over the past five yearsRich Baich is global chief information security officer for insurance giant AIG. Photo by Spencer Platt/Getty Images).

Cyber Insurance

Cyber Insurance Insurance Marketing Cyber Risk

MY TAKE: A primer on how ransomware arose to the become an enduring scourge

The Last Watchdog

AUGUST 15, 2019

Stunning as these two high-profile attacks were, they do not begin to convey the full scope of what a pervasive and destructive phenomenon ransomware has become – to individuals, to companies of all sizes and, lately, to poorly defended local agencies. Probing and plundering Ransomware is highly resilient and flexible.

Ransomware

Ransomware Internet Internet Hacking

Is the INC ransomware gang behind the attack on McLaren hospitals?

Security Affairs

AUGUST 10, 2024

A INC Ransom ransomware attack this week disrupted IT and phone systems at McLaren Health Care hospitals. On Tuesday, an INC Ransom ransomware attack hit the McLaren Health Care hospitals and disrupted their IT and phone systems. McLaren Health Care is a nonprofit health care organization based in Grand Blanc, Michigan, USA.

Ransomware

Ransomware Insurance Data breaches Cyber Attacks

Security Affairs newsletter Round 494 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

OCTOBER 20, 2024

CISA adds Fortinet products and Ivanti CSA bugs to its Known Exploited Vulnerabilities catalog Nation-state actor exploited three Ivanti CSA zero-days Dutch police dismantled dual dark web market ‘Bohemia/Cannabia’ macOS HM Surf flaw in TCC allows bypass Safari privacy settings Iran-linked actors target critical infrastructure organizations (..)

Data breaches

Data breaches Cybercrime Cyber Insurance Marketing

Ransomware infected systems at Xchanging, a DXC subsidiary

Security Affairs

JULY 6, 2020

Systems at Xchanging, a subsidiary of Global IT services and solutions provider DXC Technology was hit by ransomware over the weekend. Global IT services and solutions provider DXC Technology disclosed a ransomware attack that infected systems at its Xchanging subsidiary. Pierluigi Paganini. SecurityAffairs – hacking, DXC).

Ransomware

Ransomware Insurance Financial Services Technology

Danish news agency Ritzau hit by ransomware, but did not pay the ransom

Security Affairs

NOVEMBER 26, 2020

Ritzau, the biggest Danish news agency, was hit by a ransomware attack that brought it offline but refused to pay the ransom. Ritzau , the biggest Danish news agency, was hit by a ransomware attack that brought it offline. The cyber attack hit a quarter of Ritzau ’s 100 servers that have been damaged. Pierluigi Paganini.

Ransomware

Ransomware Insurance Cyber Attacks Encryption

Rite Aid disclosed data breach following RansomHub ransomware attack

Security Affairs

JULY 13, 2024

The American drugstore chain giant Rite Aid suffered a data breach following a cyberattack in June conducted by the RansomHub ransomware group. The company launched an investigation into the security breach with the help of external experts and will notify the impacted customers, BleepingComputer first reported.

Data breaches

Data breaches Ransomware Hacking Insurance

Maze Ransomware operators claim to have stolen millions of credit cards from Banco BCR

Security Affairs

MAY 1, 2020

Maze Ransomware operators claim to have gained access to the network of Banco BCR of Costa Rica and stolen 11 million credit card credentials. Maze Ransomware operators claim to have hacked the network of the state-owned Bank of Costa Rica Banco BCR and to have stolen internal data, including 11 million credit card credentials.

Ransomware

Ransomware Banking Cyber Insurance Advertising

Policy debate: the pros and cons of cybersecurity insurance

BH Consulting

JUNE 22, 2021

Organisations are coming under increasing pressure to take out cybersecurity insurance cover. Also known as cyber risk insurance, it’s now a prerequisite in some public sector tenders. In reality, the tenderer should be asking every bidder questions such as: Is it certified to an independent security standard like ISO 27001 ?

Insurance

Insurance Cybersecurity Cyber Insurance Cyber Risk

Dark Angels Team ransomware group hit Johnson Controls

Security Affairs

SEPTEMBER 28, 2023

Johnson Controls International suffered a ransomware attack that impacted the operations of the company and its subsidiaries. The company provides HVAC (heating, ventilation, and air conditioning), solutions for building automation, fire and security systems, and components for energy management. ” reported Bleeping Computer. .”

Ransomware

Ransomware Insurance Technology Encryption

Ransomware attacks break records in 2023: the number of victims rose by 128%

Security Affairs

JANUARY 19, 2024

Ransomware groups claimed that they successfully targeted 4191 victims in 2023, Cybernews researchers report. According to the Ransomlooker tool, the number of ransomware attack victims increased by 128.17% compared to the previous year (2022), with 1837 additional incidents. Winter was the least active time (14.6%

Ransomware

Ransomware Manufacturing Retail Insurance

October ransomware attack on Dallas County impacted over 200,000 people

Security Affairs

JULY 11, 2024

The ransomware attack that hit Dallas County in October 2023 has impacted more than 200,000 individuals exposing their personal information. In October 2023 the Play ransomware group hit Dallas County, Texas, and added the city to its Tor leak site claiming the theft of sensitive documents from multiple departments.

Ransomware

Ransomware Identity Theft Data breaches Insurance

U.S. Medical billing provider Medusind suffered a sata breach

Security Affairs

JANUARY 9, 2025

Additionally, we implemented enhanced security measures to prevent similar incidents from occurring in the future.” The information impacted varies by individual. Medusind did not share details about the attack, it is unclear if the company was the victim of a ransomware attack.

Data breaches

Data breaches Insurance Healthcare Banking

City of Joplin paid a 320K ransom after a ransomware Attack

Security Affairs

AUGUST 9, 2021

A ransomware attack hit City of Joplin forcing the IT staff to shutdown the City computer. Finally the insurer for Joplin paid $320,000 to threat actors. A ransomware attack last month hit the City of Joplin forcing the IT staff to shut down the city’s government’s computer system to prevent the threat from spreading.

Ransomware

Ransomware Insurance Internet Internet

Change Healthcare Breach Hits 100M Americans

Black Basta ransomware gang hit BT Group

Trending Sources

Ransomhub ransomware gang claims the hack of Mexican government Legal Affairs Office

Healthcare Now Third-Most Targeted Industry for Ransomware

Great Plains Regional Medical Center ransomware attack impacted 133,000 individuals

Insurance firm CNA discloses data breach after March ransomware attack

HardBit ransomware demands ransom based on insurance cover

Arthur J. Gallagher (AJG) insurance giant discloses ransomware attack

Interlock ransomware gang started leaking data allegedly stolen from leading kidney dialysis firm DaVita

Change Healthcare data breach exposed the private data of over half the U.S.

2023 Anna Jaques Hospital data breach impacted over 310,000 people

The Hidden Cost of Ransomware: Wholesale Password Theft

Change Healthcare data breach impacted over 100 million people

Health insurer Point32Health suffered a ransomware attack

Merck settles with insurers regarding a $1.4 billion claim over NotPetya damages

How the ransomware explosion is reshaping the cyber insurance market

Security Blueprints of Many Companies Leaked in Hack of Swedish Firm Gunnebo

Nova Scotia Power confirms it was hit by ransomware attack but hasn’t paid the ransom

Medusa ransomware hit over 300 critical infrastructure organizations until February 2025

HardBit ransomware gang adjusts their demands so the insurance company would cover the ransom cost

University of Utah pays a $457,000 ransom to ransomware gang

Packaging giant WestRock is still working to resume after recent Ransomware Attack

Safety first: Will insurance companies stall or accelerate cybersecurity progress?

McLaren Health Care data breach impacted over 743,000 people

Cyber Insurance and the Changing Global Risk Environment

Maze Ransomware leaks files of ST Engineering group

Omni Family Health data breach impacts 468,344 individuals

The Financial Dynamics Behind Ransomware Attacks

Richmond University Medical Center data breach impacted 674,033 individuals

How MFA and Cyber Liability Insurance Effectively Manage Risk in Higher Education

As market for cyber insurance booms, watchdog calls for better data

MY TAKE: A primer on how ransomware arose to the become an enduring scourge

Is the INC ransomware gang behind the attack on McLaren hospitals?

Security Affairs newsletter Round 494 by Pierluigi Paganini – INTERNATIONAL EDITION

Ransomware infected systems at Xchanging, a DXC subsidiary

Danish news agency Ritzau hit by ransomware, but did not pay the ransom

Rite Aid disclosed data breach following RansomHub ransomware attack

Maze Ransomware operators claim to have stolen millions of credit cards from Banco BCR

Policy debate: the pros and cons of cybersecurity insurance

Dark Angels Team ransomware group hit Johnson Controls

Ransomware attacks break records in 2023: the number of victims rose by 128%

October ransomware attack on Dallas County impacted over 200,000 people

U.S. Medical billing provider Medusind suffered a sata breach

City of Joplin paid a 320K ransom after a ransomware Attack

Stay Connected