7News reports: The personal information of Service NSW customers has been exposed to other logged-in individuals during a privacy incident, the agency says. An update released to the “My services” dashboard on March 20 resulted in the data breach, Service NSW chief executive officer Greg Wells said in an email to affected customers shared with AAP on…
Author: Dissent
Employee and patient files from Montgomery General Hospital leaked by ransomware group
An email DataBreaches received yesterday from an unrecognized account contained just one line – a link to a new listing on the D#nut Leaks ransomware group’s leak site about Montgomery General Hospital (MGH) in West Virginia. MGH is part of the Montgomery General Health Care System, Inc., which includes the hospital, Montgomery General Elderly Care, Montgomery…
Alabama’s Jefferson County School System victim of ransomware attack during Spring Break
WBRC reports: A ransomware attack targeted the Jefferson County School System in Alabama over Spring Break. A news release states the district’s technology team took immediate steps to stop the attack and notified state and local authorities. Preliminary investigations have not revealed any evidence of a breach of sensitive personally identifiable information. However, the district…
Today’s “Don’t Say ‘Ransomware’ Award” goes to….
DataBreaches probably sounds like a broken record after six years of calls for more transparency in breach notifications. Sadly, the situation has gotten worse in the past year. Not only do entities fail to admit they suffered a ransomware attack, but they fail to inform patients if the patient’s protected health information was leaked or…
Fake ransomware gang targets U.S. orgs with empty data leak threats
Ionut Ilascu reports: Fake extortionists are piggybacking on data breaches and ransomware incidents, threatening U.S. companies with publishing or selling allegedly stolen data unless they get paid. Sometimes the actors add the menace of a distributed denial-of-service (DDoS) attack if the message recipient does not comply with the instructions in the message. Read more about…
‘Vulkan files’ leak reveals Putin’s global and domestic cyberwarfare tactics
Luke Harding, Stiliyana Simeonova, Manisha Ganguly, and Dan Sabbagh at The Guardian provide some background on the Vulkan Files: ….. The Vulkan files, which date from 2016 to 2021, were leaked by an anonymous whistleblower angered by Russia’s war in Ukraine. Such leaks from Moscow are extremely rare. Days after the invasion in February last…