The American Armed Forces Mutual Aid Association, a non-profit organization in Virginia that provides insurance and benefits services to the military community, is notifying 161,621 individuals of a hacking incident. On January 29, AAFMAA became aware of suspicious activity on its system. Their investigation revealed that an unauthorized party had first gained access to certain…
Author: Dissent
Some UPMC St. Margaret patients’ info shared with unauthorized organization by now-former employee
Paul J. Gough reports that an employee of UPMC St. Margaret was fired after they sent a record to an unidentified outside organization that contained patient information. A March 5th statement on UPMC’s web site reveals that on August 8, 2020, UPMC first became aware of the inappropriate disclosure of a medication administration report to an…
Terminated: Texas Medicaid subcontractor dumped after data breach in ransomware attack from Russia
Robert T. Garrett reports that a breach that significantly impacted Texas Medicaid patients last year was not fully or accurately disclosed to the state by the subcontractor at the time. A Texas Medicaid subcontractor has been terminated after a data-privacy breach caused by a ransomware attack from Russia last year exposed the personal information of…
Massive Supply-Chain Cyberattack Breaches Several Airlines
The SITA breach that also impacted 580,000 Singapore Airlines customers is getting more attention as more and more airlines issue statements to their customers. Now my friends are even sending me emails they receive from airlines. You can read SITA’s disclosure on their site.
At Least 30,000 U.S. Organizations Newly Hacked Via Holes in Microsoft’s Email Software
Brian Krebs reports: At least 30,000 organizations across the United States — including a significant number of small businesses, towns, cities and local governments — have over the past few days been hacked by an unusually aggressive Chinese cyber espionage unit that’s focused on stealing email from victim organizations, multiple sources tell KrebsOnSecurity. The espionage…
New ransomware only decrypts victims who join their Discord server
Lawrence Abrams reports: A new ransomware called ‘Hog’ encrypts users’ devices and only decrypts them if they join the developer’s Discord server. This week, security researcher MalwareHunterTeam found an in-development decryptor for the Hog Ransomware that requires victims to join their Discord server to decrypt their files. Read more on BleepingComputer.