Bayhealth Hospital
July 31, 2024
•[ ransomware, malware, healthcare ]
The Rhysida Ransomware group claims to have breached Bayhealth Hospital in Delaware and offers alleged stolen data for 25 BTC.
Life University
July 30, 2024
•[ data leak, ransomware ]
On July 30 2024, an unauthorized actor accessed portions of Life Universitys network in Marietta, Georgia, and obtained files containing personal and identification information. The breach was disclosed publicly on April 2 2025 through state regulatory filings and a JD Supra summary. While no actor was named, the activity reflects a financially motivated criminal intrusion typical of U.S. higher-education sector data thefts.
Community Care Alliance
July 29, 2024
•[ ransomware, leak, malware ]
Community Care Alliance is listed in the Rhysida ransomware leak site.
OneBlood
July 29, 2024
•[ ransomware, malware, healthcare ]
OneBlood, a large not-for-profit blood center that serves hospitals and patients in the United States, is dealing with an IT systems outage caused by a ransomware attack.
Delhi Hospital
July 29, 2024
•[ ransomware, leak, malware ]
Delhi Hospital (also known as Richard Parish Hospital) in Louisiana is added to the RADAR and DISPOSSESSORs (R&D) ransomware leak site.
Millinocket Regional Hospital
July 25, 2024
•[ ransomware, malware, healthcare ]
Millinocket Regional Hospital (MRHME) suffers a RansomHub ransomware attack. The threat actors claim to have exfiltrated 10 GB of files.
Intendencia de Paysandú
July 24, 2024
•[ ransomware ]
On July 24 2024, the Paysand Department (Uruguay) suffered a ransomware attack that encrypted all servers and backups, paralyzing municipal operations for several days. Hackers demanded about USD 650 000 in bitcoin; AGESICs forensic investigation confirmed no evidence of data exfiltration or intellectual-property theft.
Split St Jerome Airport
July 22, 2024
•[ ransomware, malware ]
The Split St Jerome Airport is hit with an Akira ransomware attack.
Schneider Regional Medical Center
July 21, 2024
•[ ransomware, leak, malware ]
Schneider Regional Medical Center in the Virgin Islands is added to Qilins ransomware leak site.
Home users' devices worldwide
July 20, 2024
•[ ransomware, malware ]
A massive Magniber ransomware campaign encrypts home users' devices worldwide and demands thousand-dollar ransoms.
Superior Court of Los Angeles County (LASC)
July 19, 2024
•[ ransomware, malware, government ]
The largest trial court in the United States, the Superior Court of Los Angeles County, closed all 36 courthouse locations on Monday to restore systems affected by a Friday ransomware attack.
City of Columbus
July 18, 2024
•[ ransomware, malware, government ]
The City of Columbus, Ohio, says it's investigating whether personal data was stolen in a ransomware attack that disrupted the City's services. The attackers claimed to have stolen 6.5 terabytes of data, including personal information such as names, addresses, dates of birth, Social Security numbers, bank account details, and driver's license information of approximately 500,000 residents.
Lancaster Royal Grammar School
July 16, 2024
•[ ransomware, malware, education ]
The Lancaster Royal Grammar School is hit with a ransomware attack.
Bassett Furniture Industries
July 15, 2024
•[ ransomware, malware, manufacturing ]
Bassett Furniture Industries says it shut down some of its information technology systems after it discovered a ransomware attack.
Repligen Corporation
July 15, 2024
•[ ransomware, malware, manufacturing ]
Bioprocessing company Repligen Corporation suffers an INC ransomware attack.
The Alcohol & Drug Testing Service (TADTS)
July 15, 2024
•[ ransomware, data leak ]
TADTS notifying ~750,000 people of compromise stemming from a July 2024 ransomware attack, per SecurityWeek.
Betances Health Center
July 12, 2024
•[ ransomware, malware, healthcare ]
The ransomware group Hunters International adds Betances Health Center in New York to their leak site.
Rite Aid
July 12, 2024
•[ ransomware, malware, healthcare ]
Pharmacy giant Rite Aid confirms a data breach after suffering a cyberattack in June, which was claimed by the RansomHub ransomware operation. The breach impacts 2.2 million customers.
Undisclosed LATAM Airline
July 11, 2024
•[ ransomware, malware ]
Researchers from Blackberry reveal the details of a cyberattack carried out by the Akira ransomware group targeting a Latin American airline, carried out likely exploiting the Veeam backup server vulnerability CVE-2023-27532.
Sibanye-Stillwater
July 11, 2024
•[ ransomware, malware, healthcare ]
Mining giant Sibanye-Stillwater, one of the worlds biggest producers of platinum and gold, reveals that its global IT systems have suffered a cyberattack. The BlackSuit ransomware gang claims responsibility for the attack.
