Expect some buzz next week about a new report with significant findings about the impact of cyberattacks on patient care and mortality. The study was funded by Proofpoint and conducted independently by Ponemon Institute. The survey addresses important questions about the impact of various types of cyberattacks on patient safety and care. While DataBreaches appreciates…
Category: Breach Incidents
Bits ‘n Pieces (Trozos y Piezas)
Br: National Fund for Educational Development (FNDE) hit by ransomware On September 3, the RansomExx group leaked 62 TB of files from the National Fund for Educational Development (FNDE). FDNE is a federal agency of the Ministry of Education, and is responsible for implementing programs such as the National School Nutrition Program. FNDE provided a…
“Bad faith, misunderstanding, or indifference?” Why do ransomware teams falsely insist victims have “revenue?”
Valéry Rieß-Marchive has been following the ransomware attack on the Sud-Francilien hospital center in Corbeille-Essonnes by LockBit 3.0 since it was first announced and has consistently been ahead of the news pack in reporting on developments. In his latest report, he reveals that a previous report that GIGN negotiators were able to reduce an alleged…
URLs Are NOT Passwords, and Sadly, That Needed to Be Said (Stolowitz vs. Nuance Communications)
In 2014, Nuance Communications discovered that anyone could access protected health information on one of its platforms. After the situation persisted for years, a former employee decided to submit a whistleblower complaint to HHS. For his efforts, he spent more than one year fending off threatened federal hacking charges, even though no hacking was involved….
Orange Cyberdefense investigating claims of compromise
Some hacks may be more embarrassing than others. Orange Cyberdefense is checking its own servers for signs of a breach after a post on a popular forum offered data allegedly from their firm. Data in the sample included Contact Name, Email, Phone Number, Company Name, and Solution Name. Data on the linked paste site contained…
Hackers acquire info on current and former students and staff at Savannah College of Art and Design
Dealing with a patchwork of state data breach notification laws can be challenging. Dealing with state laws, federal regulations, and the GDPR can be even more difficult. But that may be the situation for Savannah College of Art and Design (SCAD), a private school in Georgia that enrolls students from other states and has a…