Breach

The ransomware group claims to have information on at least 500,000 Christie’s clients.

TechCrunch reports that U.S. consumer-grade spyware app pcTattletale claimed to be hacked by a threat actor purporting to have exposed the app's internal data, including information stolen from its victims, to its website.

U.S. prescription management firm Sav-Rx had the data of more than 2.8 million individuals exfiltrated following a cyberattack in October, Security Affairs reports.

Novartis Pharmaceuticals, Bayer, GlaxoSmithKline, and eight other major pharmaceutical firms have disclosed the compromise of their patients' information following a cyberattack against large U.S. pharmaceutical services provider Cencora, formerly known as AmericsourceBergen, in February, reports BleepingComputer.

Attackers used a default account to create hidden VMs and persist in MITRE’s VMware environment.

San Antonio-based primary healthcare provider CentroMed had personally identifiable information from nearly 400,000 patients compromised following a data breach late last month, reports Cybernews.

The Canadian drug retailer maintains it won’t pay a $25 million ransom, while LockBit allegedly said it would start releasing stolen data.

Intercontinental Exchange, the parent firm of the New York Stock Exchange, has been ordered by the U.S. Securities and Exchange Commission to pay $10 million following its failure to promptly report a data breach in 2021, which affected the NYSE and eight other subsidiaries, according to The Register.