With all the big attacks on third-party vendors, it’s not surprising that some entities are reporting two or more breaches in a short period of time. Imagine360, LLC, is a self-funded health plan for employers. On or around January 30, Imagine360 identified unusual activity within Citrix, its third-party file-sharing platform. Imagine360 terminated access to the…
Author: Dissent
One of the scariest podcasts ever….
Remember last year when we were all reporting on how Conti had crippled Costa Rica with a ransomware attack and was suggesting the people overthrow the government to get one in place that would pay them? What if that was actually what Conti was trying to test on behalf of Russia or other powers —…
Jpn: Notice of apology: Email containing current student information mistakenly sent to currently enrolled students
Email errors are still a thing. Here’s an apology by Tokyo Tech to 10,000 of its currently enrolled students: A file containing personal information of currently enrolled Tokyo Tech students was attached mistakenly to an email sent on the afternoon of June 28 to presently enrolled regular-course students. The email in question was an announcement…
Data breach by PLAY affects 425,000 Swiss Abroad
Balz Rigendinger reports on a recent attack by the PLAY ransomware group: In mid-May, a stolen data set appeared on the darknet. The content was information about subscribers to Swiss Review.This is a federal government magazine that keeps Swiss citizens abroad up to date on developments in their home country. The data set is comprehensive. It…
You’ve patched right? ‘340K+ Fortinet firewalls’ wide open to critical security bug
Jessica Lyons Hardcastle reports: More than 338,000 FortiGate firewalls are still unpatched and vulnerable to CVE-2023-27997, a critical bug Fortinet fixed last month that’s being exploited in the wild. This is according to infosec outfit Bishop Fox, which has developed an example exploit for achieving remote code execution via the hole. Successful exploitation of the…
Murfreesboro Medical Clinic & SurgiCenter ransomware attack affected 559,000 patients (update1)
On May 6 and May 7, DataBreaches reported that the attack on Murfreesboro Medical Clinic & SurgiCenter (“MMC”) appeared to be the work of the ransomware group known as BianLian. On June 14, MMC issued an updated notice on their website, as noted by Daily News Journal. The news report reiterated that MMC refused to…