Blog – Page 4 – DataBreaches.Net

UK opens investigation of MoD payroll contractor after confirming attack

Posted on May 8, 2024 by Dissent

Connor Jones reports: UK Government has confirmed a cyberattack on the payroll system used by the Ministry of Defence (MoD) led to “malign” forces accessing data on current and a limited number of former armed forces personnel. There is no evidence to suggest that the criminals who broke into the systems actually removed any data,…

Fred Hutch notifies more patients of November 2023 attack (1)

Posted on May 5, 2024 by Dissent

In December 2023, UW’s Fred Hutchinson Cancer Center (“Fred Hutch”) reported a November cyberattack that involved the exfiltration of patient data and attempted extortion of patients. DataBreaches contacted Fred Hutch on December 8 to ask whether the attackers had encrypted their files and whether they had negotiated with the threat actors. They did not reply….

Forensic reports are NOT privileged — Ontario Divisional Court

Posted on May 4, 2024 by Dissent

A comment by Canadian attorney David Fraser caught my eye on Infosec.Exchange: This decision is going to be significant for all lawyers who work in cyber incident response and breach coaching. The IPC’s decision that forensic reports are NOT privileged was upheld as correct by the ON Divisional Court. The case is LifeLabs LP v….

All London Drugs stores closed across Western Canada due to “operational issue”

Posted on April 28, 2024 by Dissent

CTV News reports: All 79 locations of pharmacy and retail chain London Drugs are shut down Sunday, and there is no estimate on when they will be back open. A customer service representative told CTV News “all of our systems are down” and the stores are unable to process any transactions for the time being….

LivaNova to notify U.S. patients of October 2023 ransomware incident (1)

Posted on April 26, 2024 by Dissent

A press release from medical technology firm LivaNova PLC indicates that patients of LivaNova U.S. are being notified of a breach first disclosed in November of 2023. An investigation at the time indicated that their systems were first accessed without authorization on or around October 26, 2023, but it was not until April 10, 2024…

Two ransomware attacks in 2023 first disclosed in April — Kisco Senior Living, Blackstone Valley Community Health Care (1)

Posted on April 21, 2024 by Dissent

Two more ransomware incidents that occurred in 2023 were disclosed this week. One was disclosed 10 months after the incident, and the other was disclosed 5 months after the incident. Kisco Senior Living On or about June 15, 2023, BlackByte claimed responsibility for a ransomware attack on Kisco. This week, Kisco filed a notification with…