The Elf-V gang, known for their lack of hesitation in targeting hospitals, recently threatened to release stolen data from Morrison Community Hospital in Illinois. After initially removing the threat from their data notification site, the gang proceeded to publish over 8 terabytes of VMware images and employee passwords from the hospital. In addition, NASCO, the Benefits Administration Division of the Private Blue Cross and Blue Shield Health Plans, is notifying over 800,000 customers that their personal information, including names and social security numbers, has been stolen as part of the hack of their Progress Software Move-It servers. These incidents highlight the significant number of businesses and governments, totaling over 2,500, that have fallen victim to data breaches involving Move-It compromises.
This episode reports on the results of the latest Toronto edition of Pwn2Own contest, hacks at a US hospital, an e-commerce processor and more MOVEit victims