The Vice Society added more schools to their “partners” leak site yesterday. One of them is the Mars Area School District in Pennsylvania. According to niche.com, MASD is a k-12 district with 3,334 students. In a notice posted on the district’s website on October 3, Superintendent Gross described the progress the district was making in…
Category: Breach Incidents
Johnson Fitness and Wellness hit by DESORDEN Group
In what has become a familiar event, DESORDEN Group announced yet another attack on a multinational corporation. This time, their target was Johnson Fitness and Wellness, a subsidiary of Johnson Health Tech. Co., Ltd. Johnson Health Tech manufactures exercise training equipment and is listed on the Taiwan stock exchange; Johnson Fitness is headquartered in the…
Talbert House settles litigation stemming from 2021 breach
In July and September of 2021, DataBreaches reported on a breach involving Talbert House in Ohio. DataBreaches had discovered data from Talbert House advertised on Marketo. The data from the non-profit agency included clients’ and employees’ files, as well as data from third parties and partners. Of note, DataBreaches reported that the Marketo listing had…
Detroit Health Department Provides Notice of Data Security Incident
The following is a notice from the Detroit Health Department. It is unclear whether this was an accidental breach due to error or some more intentional wrongdoing by an employee, but the notice makes no mention of disciplining any employee or referring to law enforcement. The Detroit Health Department is notifying specific individuals about a…
Wisconsin Department of Health Services notifying some Medicaid members of breach
The Wisconsin Department of Health Services (DHS) today announced that on August 8, 2022, as part of a cybersecurity incident investigation, DHS was notified that a presentation emailed to the DHS Children’s Long-Term Support Council in April 2021 contained protected health information. This presentation was forwarded to employees working for county government agencies in Rock…
CA: Cardiac Imaging Associates notifying patients of data breach
Cardiac Imaging Associates (“CIA”) is notifying people of a breach that occurred earlier this year after an unauthorized actor could access files in an email account between approximately March 30, 2022, and April 6, 2022. CIA could not determine if the unauthorized actor viewed any particular email or attachment as a result of this activity. They report…