In 2019, DataBreaches reported that Solara Medical Supplies in California was notifying more than 110,000 patients after an attacker gained access to some employees’ email accounts via phishing. Solara was subsequently sued and settled claims for $9.76 million. Now today, HHS OCR announced a settlement with Solara: Today the U.S. Department of Health and Human…
UK floats ransomware payout ban for public sector
Connor Jones reports: A total ban on ransomware payments across the public sector might actually happen after the UK government opened a consultation on how to combat the trend of criminals locking up whole systems and taxpayers footing the bill. The consultation will consider views on extending the ransom payment ban from central government departments…
Robinhood to Pay $45 Million SEC Settlement Over Data Breach, Other Violations
Alexander Osipovich reports: Two brokerage units of Robinhood Markets agreed to pay $45 million to settle an investigation by the Securities and Exchange Commission into a range of alleged violations, including one stemming from a 2021 data breach that exposed millions of customer names and emails. … In the November 2021 breach, email addresses for about…
Equifax Class Action Settlement 2024 Payment Started, Claimants Getting Paid Via Checks
Urvashi reports: In 2017, Equifax, one of the largest credit reporting agencies in the United States, announced a significant data breach that exposed the personal and financial information of about 147 million individuals. This highly sensitive data included Social Security numbers, birth dates, addresses, and, for some victims, credit card information. News of the breach…
PowerSchool Faces Suit Over Breach of Student, Teacher Data
Christopher Brown reports: PowerSchool Holdings Inc. is facing three federal lawsuits alleging the education software provider negligently failed to protect the personal information of students, parents, and teachers that was exposed in a December data breach. Sheilah Buack-Shelton, Tyler Baker, and Kimberly Kinney alleged in separate complaints that PowerSchool breached its duties under common law,…
Phishing texts trick Apple iMessage users into disabling protection
Lawrence Abrams reports: Cybercriminals are exploiting a trick to turn off Apple iMessage’s built-in phishing protection for a text and trick users into re-enabling disabled phishing links. With so much of our daily activities done from our mobile devices, whether paying bills, shopping, or communicating with friends and colleagues, threat actors increasingly conduct smishing (SMS phishing)…