• Skip to main content
  • Skip to header right navigation
  • Skip to site footer
RestorePrivacy

RestorePrivacy

Resources to stay safe and secure online

  • News
  • Tools
    • Secure Browser
    • VPN
    • Ad Blocker
    • Secure Email
    • Private Search Engine
    • Data Removal
      • Incogni Review
    • Password Manager
    • Secure Messaging App
    • Tor
    • Identity Theft Protection
    • Unblock Websites
    • Privacy Tools
  • Email
    • Secure Email
    • ProtonMail Review
    • Tutanota Review
    • Mailfence Review
    • Mailbox.org Review
    • Hushmail Review
    • Posteo Review
    • Fastmail Review
    • Skiff Mail Review
    • Runbox Review
    • Temporary Disposable Email
    • Encrypted Email
    • Alternatives to Gmail
  • VPN
    • What is VPN
    • VPN Reviews
      • NordVPN Review
      • Surfshark VPN Review
      • VyprVPN Review
      • Perfect Privacy Review
      • ExpressVPN Review
      • CyberGhost Review
      • AVG VPN Review
      • IPVanish Review
      • Hotspot Shield VPN Review
      • ProtonVPN Review
      • Atlas VPN Review
      • Private Internet Access Review
      • Avast VPN Review
      • TorGuard Review
      • PrivadoVPN Review
    • VPN Comparison
      • NordVPN vs ExpressVPN
      • NordVPN vs PIA
      • IPVanish vs ExpressVPN
      • CyberGhost vs NordVPN
      • IPVanish vs NordVPN
      • ExpressVPN vs PIA
      • VyprVPN vs NordVPN
      • CyberGhost vs ExpressVPN
      • NordVPN vs HideMyAss
      • ExpressVPN vs ProtonVPN
      • Atlas VPN vs NordVPN
      • NordVPN vs Surfshark
      • ExpressVPN vs Surfshark
      • NordVPN vs Proton VPN
      • Surfshark vs CyberGhost
      • Surfshark vs IPVanish
    • Best VPNs
      • Best VPN for Torrenting
      • Best VPN for Netflix
      • Best Free VPN
      • VPN for Firestick TV
      • Best VPN for Android
      • Best VPN for Gaming
      • Best VPN for PC
      • Best VPN for Disney Plus
      • Best VPN for Hulu
      • Best VPN for Mac
      • Best VPN for Streaming
      • Best VPN for Windows
      • Best VPN for iPhone
    • VPN Coupons
      • ExpressVPN Coupon
      • NordVPN Coupon
      • Cyber Monday VPN Deals
      • NordVPN Cyber Monday
      • Surfshark VPN Cyber Monday
      • ExpressVPN Cyber Monday
    • VPN Guides
      • Free Trial VPN
      • Cheap VPNs
      • Static IP VPN
      • VPN Ad Blocking
      • No Logs VPN
      • Best VPN Chrome
      • Best VPN Reddit
      • Split Tunneling VPN
      • VPN for Binance
      • WireGuard VPN
      • VPN for Amazon Prime
      • VPN for Linux
      • VPN for iPad
      • VPN for Firefox
      • VPN for BBC iPlayer
    • By Country
      • Best VPN Canada
      • Best VPN USA
      • Best VPN UK
      • Best VPN Australia
      • VPN for Russia
    • VPN Router
  • Password
    • Best Password Managers
    • Comparisons
      • NordPass vs 1Password
      • 1Password vs LastPass
      • NordPass vs LastPass
      • RoboForm vs NordPass
      • 1Password vs Bitwarden
      • Dashlane vs NordPass
      • 1Password vs Dashlane
      • NordPass vs Bitwarden
    • KeePass Review
    • NordPass Review
    • 1Password Review
    • Dashlane Review
    • RoboForm Review
    • LastPass Review
    • Bitwarden Review
    • Strong Password
  • Storage
    • Best Cloud Storage
    • pCloud Review
    • Nextcloud Review
    • IDrive Review
    • SpiderOak Review
    • Sync.com Review
    • MEGA Cloud Review
    • NordLocker Review
    • Tresorit Review
    • Google Drive Alternatives
  • Messenger
    • Secure Messaging Apps
    • Signal Review
    • Telegram Review
    • Wire Review
    • Threema Review
    • Session Review
  • Info
    • Mission
    • Press
    • Contact
  • News
  • Tools
    • Secure Browser
    • VPN
    • Ad Blocker
    • Secure Email
    • Private Search Engine
    • Data Removal
      • Incogni Review
    • Password Manager
    • Secure Messaging App
    • Tor
    • Identity Theft Protection
    • Unblock Websites
    • Privacy Tools
  • Email
    • Secure Email
    • ProtonMail Review
    • Tutanota Review
    • Mailfence Review
    • Mailbox.org Review
    • Hushmail Review
    • Posteo Review
    • Fastmail Review
    • Skiff Mail Review
    • Runbox Review
    • Temporary Disposable Email
    • Encrypted Email
    • Alternatives to Gmail
  • VPN
    • What is VPN
    • VPN Reviews
      • NordVPN Review
      • Surfshark VPN Review
      • VyprVPN Review
      • Perfect Privacy Review
      • ExpressVPN Review
      • CyberGhost Review
      • AVG VPN Review
      • IPVanish Review
      • Hotspot Shield VPN Review
      • ProtonVPN Review
      • Atlas VPN Review
      • Private Internet Access Review
      • Avast VPN Review
      • TorGuard Review
      • PrivadoVPN Review
    • VPN Comparison
      • NordVPN vs ExpressVPN
      • NordVPN vs PIA
      • IPVanish vs ExpressVPN
      • CyberGhost vs NordVPN
      • IPVanish vs NordVPN
      • ExpressVPN vs PIA
      • VyprVPN vs NordVPN
      • CyberGhost vs ExpressVPN
      • NordVPN vs HideMyAss
      • ExpressVPN vs ProtonVPN
      • Atlas VPN vs NordVPN
      • NordVPN vs Surfshark
      • ExpressVPN vs Surfshark
      • NordVPN vs Proton VPN
      • Surfshark vs CyberGhost
      • Surfshark vs IPVanish
    • Best VPNs
      • Best VPN for Torrenting
      • Best VPN for Netflix
      • Best Free VPN
      • VPN for Firestick TV
      • Best VPN for Android
      • Best VPN for Gaming
      • Best VPN for PC
      • Best VPN for Disney Plus
      • Best VPN for Hulu
      • Best VPN for Mac
      • Best VPN for Streaming
      • Best VPN for Windows
      • Best VPN for iPhone
    • VPN Coupons
      • ExpressVPN Coupon
      • NordVPN Coupon
      • Cyber Monday VPN Deals
      • NordVPN Cyber Monday
      • Surfshark VPN Cyber Monday
      • ExpressVPN Cyber Monday
    • VPN Guides
      • Free Trial VPN
      • Cheap VPNs
      • Static IP VPN
      • VPN Ad Blocking
      • No Logs VPN
      • Best VPN Chrome
      • Best VPN Reddit
      • Split Tunneling VPN
      • VPN for Binance
      • WireGuard VPN
      • VPN for Amazon Prime
      • VPN for Linux
      • VPN for iPad
      • VPN for Firefox
      • VPN for BBC iPlayer
    • By Country
      • Best VPN Canada
      • Best VPN USA
      • Best VPN UK
      • Best VPN Australia
      • VPN for Russia
    • VPN Router
  • Password
    • Best Password Managers
    • Comparisons
      • NordPass vs 1Password
      • 1Password vs LastPass
      • NordPass vs LastPass
      • RoboForm vs NordPass
      • 1Password vs Bitwarden
      • Dashlane vs NordPass
      • 1Password vs Dashlane
      • NordPass vs Bitwarden
    • KeePass Review
    • NordPass Review
    • 1Password Review
    • Dashlane Review
    • RoboForm Review
    • LastPass Review
    • Bitwarden Review
    • Strong Password
  • Storage
    • Best Cloud Storage
    • pCloud Review
    • Nextcloud Review
    • IDrive Review
    • SpiderOak Review
    • Sync.com Review
    • MEGA Cloud Review
    • NordLocker Review
    • Tresorit Review
    • Google Drive Alternatives
  • Messenger
    • Secure Messaging Apps
    • Signal Review
    • Telegram Review
    • Wire Review
    • Threema Review
    • Session Review
  • Info
    • Mission
    • Press
    • Contact

Quantum Ransomware Gang Claims Florida Dept. of Veterans Affairs as Latest Victim

May 27, 2022 By Sven Taylor — 2 Comments
Florida Department of Veterans Affairs Ransomware Quantum FDVA

Update: The Director of Communications for the Florida Department of Veterans Affairs has commented on the situation, posted below.

The well-known ransomware gang that goes by the name of Quantum has published the Florida Department of Veterans Affairs as the group’s latest victim, just released earlier today.

The group maintains a website on the Dark Web called “Quantum Blog” that includes a list of the group’s victims, as well as victim data available for anyone to download. While Quantum is not as active as some other ransomware gangs, such as Lockbit, Conti, or Blackhat, the group has still managed to breach a number of large organizations over the years.

The latest breach of the Florida Department of Veterans Affairs (FDVA) would be one of the largest attacks in the group’s history.

If the claims are accurate, this could potentially expose the private data of veterans, employees, and contractors associated with the FDVA. The implications of this data breach could be catastrophic, exposing thousands of people to identify theft, fraud, and financial exploitation by various threat actors capitalizing on the release of this private data.

Quantum routinely publishes the data of its victims on the Dark Web if the group’s ransom demands (financial payout) are not met. Data can also be sold to other cybercriminals for profit.

With the article published on the “Quantum Blog” earlier today, Quantum is claiming to have exfiltrated 1.1 TB of data from FDVA that includes:

  • Veterans data
  • Employee data
  • Financial data
  • HR data
  • Supplier contracts
  • Tax data
  • Social Security Numbers

Below is a screenshot of the exploit announcement earlier today that RestorePrivacy obtained from Quantum’s Dark Web blog site.

Florida Dept of Veterans Affairs Quantum Ransomware Attack
The announcement of the latest ransomware victim, FDVA, was published earlier today on May 27, 2022.

FDVA comments on the situation

RestorePrivacy contacted the Florida Department of Veterans Affairs and spoke with a person named Jeff, and we are awaiting further comment for this story from the FDVA Communications Director. We will update this article with any information we receive from the affected parties.


Update: we have received a succinct comment from FDVA on this matter, posted below.

Under Section 282.318 any suspected or confirmed cybersecurity breach is exempt from 119.07(1) and Section 24(a), Art. 1 of the State Constitution. We can’t confirm or deny.

– R. Steven Murray, Communications & External Affairs Director, FDVA

The FDVA spokesperson also provided USA Today reporter Jason Delgado with the following statement:

An attempt was made last week to install ransomware in several files on servers belonging to our agency. The attempt was unsuccessful and there are no infected files following the attempt. We continue to monitor.

– R. Steven Murray, Communications & External Affairs Director, FDVA

Looking at the agency’s replies above, the spokesperson is still not denying that Quantum gained access to FDVA servers. And even if attempts to install ransomware were unsuccessful, it appears that Quantum was still successful in gaining access to FDVA servers and acquiring 1.1 TB of data.

About Quantum and its victims

Quantum is a very capable and potent ransomware group that has breached many other organizations over the years and we have no reason to doubt the group’s claims.

At this time, the group has not published any of the data from FDVA and is likely demanding a ransom payout from the victim. This negotiation process can take some time, but if it fails, all data will likely be published on the Dark Web for threat actors to exploit. Right now the “Quantum Blog” hosts data obtained from other victims that anyone can download.

While Quantum is not in the news as much as other ransomware gangs, the group has been around since at least September 2020 under the name “MountLocker” ransomware, according to BleepingComputer.

In August 2021, the group rebranded to “Quantum” — the name it operates under today. The group’s Dark Web site called “Quantum Blog” describes the group as follows:

About us
Team of experienced IT professionals, dedicated to the network security as a main problem of 21st century. We research all aspects in this field and force business to develop IT defense and security.We inform the society about attacks and consequenses, about information leaked to the hackers.
What we do
All posts are completely free, available for all visitors to download, use and repost in any place.

Other Quantum ransomware victims

Quantum has breached some large targets over the years, garnering the group media attention from around the world. The victims include a variety of different organizations, from private corporations to government entities, colleges, and school districts. Below is a partial list of past victims and links to various news stories about the attacks:

  • Chattanooga Chamber of Commerce
  • JetStar (caused travel disruptions)
  • Lewis & Clark Community College (resulting in temporary closure)
  • Altoona Area School District (in Altoona, PA)
  • TILIA GROUP (revenues of 34.27 billion Euros)
  • The Jewelry Exchange
  • Zepter International
  • Jazeera Airways
  • Wolf Industrial
  • Camden City School District

We will continue to monitor the situation for developments and update this article with any other commentary or information we receive.

Last updated on May 30, 2022 with new commentary and FDVA replies.

About Sven Taylor

Sven Taylor is the lead editor and founder of Restore Privacy, a digital privacy advocacy group. With a passion for digital privacy and accessible information, he created RestorePrivacy to provide you with honest, useful, and up-to-date information about online privacy, security, and related topics.

Reader Interactions

Comments

  1. SarahJoe

    June 11, 2022

    Attacking our Veterans and those that work to help them is inhuman.

    Reply
  2. BoBeX

    May 29, 2022

    Hi Sven,

    A well written article.
    I don’t know Florida law, let,s hope that the FDVA a is only seeking to confirm the breach and then will take all reasonable steps to advise the (potential) victims. Not informing is very poor practice (even if excempt)

    This gang appears (from above) to be particularly unscrupulous in selecting victims. Their claims of professionalism is delusional.

    Veterans can of many ages but this data is going to have a proportionately high amount of aged people. And people with higher levels of health problems.

    I didn’t see a hospital on the list of breaches but I bet the ignoble wretches wouldn’t hesitate.

    BoBeX

    Reply

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Sidebar

Digital Privacy Essentials:
Secure Browser
Private Search Engines
Secure Email
Best Password Managers
Secure Messaging Services
Best Ad Blockers
Best VPN Services
Secure Cloud Storage

Privacy & Security Guides:
Privacy Tools
Alternatives to Google Products
Firefox Privacy Modifications
Five Eyes, 9 Eyes, 14 Eyes Spying
Browser Fingerprinting
Is Tor Safe?
Alternatives to Gmail
VPN vs Tor
Alternatives to WhatsApp
Is Your Antivirus Spying on You?
Controlling Communication Channels is Crucial for Privacy
Anonymity Networks: VPNs, Tor, and I2P
How to Really Be Anonymous Online
Private and Anonymous Payments

Secure Email Reviews:
ProtonMail Review
Tutanota Review
Mailfence Review
Mailbox.org Review
Hushmail Review
Posteo Review
Fastmail Review
Runbox Review
CTemplar Review
Temporary Email Services
Encrypted Email

Password Manager Reviews:
Bitwarden Review
LastPass Review
KeePass Review
NordPass Review
Dashlane Review
1Password Review
Best Password Managers

Secure Messaging App Reviews:
Wire Review
Signal Review
Threema Review
Telegram Review
Session Review
Wickr Review

Secure Cloud Storage Reviews
Tresorit Review
MEGA Cloud Review
Sync.com Review
Nextcloud Review
IDrive Review
pCloud Review
SpiderOak Review
NordLocker Review

How To Guides
How to Encrypt Files on Windows
How to Encrypt Email
How to Configure Windows 10 for Privacy
How to use Two-Factor Authentication (2FA)
How to Secure Your Android Device for Privacy
How to Secure Your Home Network
How to Protect Yourself Against Identity Theft
How to Unblock Websites
How to Fix WebRTC Leaks
How to Test Your VPN
How to Hide Your IP Address
How to Create Strong Passwords
How to Really Be Anonymous Online

About RestorePrivacy

Contact

Restore Privacy Checklist

  1. Secure browser: Modified Firefox or Brave
  2. VPN: NordVPN [63% Off Coupon] or Surfshark
  3. Ad blocker: uBlock Origin or AdGuard
  4. Secure email: Mailfence or Tutanota
  5. Secure Messenger: Signal or Threema
  6. Private search engine: MetaGer or Brave
  7. Password manager: NordPass or Bitwarden

About

RestorePrivacy is a digital privacy advocacy group committed to helping people stay safe and secure online. You can support this project through donations, purchasing items through our links (we may earn a commission at no extra cost to you), and sharing this information with others. See our mission here.

We’re available for Press and media inquiries here.

RestorePrivacy is also on Twitter

COPYRIGHT © 2023 RESTORE PRIVACY, LLC · PRIVACY POLICY · TERMS OF USE · CONTACT · SITEMAP