On July 13, DataBreaches reported that the Stormous gang claimed to have exfiltrated 600,000 patients’ records from North Country Healthcare (NCH) in Arizona. At the time they provided a small sample of records in .csv format and indicated that they were going to leak 100,000 records for free and sell the other 500,000 records. Because…
Category: Breach Incidents
Gladney Adoption Center had serious data exposures in the past few months. What will they do to prevent more?
When Website Planet emailed me about an unencrypted and non-password-protected database containing 1,115,061 records with 2.49 GB of sensitive information from an adoption agency, the name Gladney Adoption Center rang a bell. I had seen that name before in the context of a data security incident. Reading the findings by Jeremiah Fowler, I was struck…
DOGE Denizen Marko Elez Leaked API Key for xAI
Brian Krebs reports: Marko Elez, a 25-year-old employee at Elon Musk’s Department of Government Efficiency (DOGE), has been granted access to sensitive databases at the U.S. Social Security Administration, the Treasury and Justice departments, and the Department of Homeland Security. So it should fill all Americans with a deep sense of confidence to learn that Mr. Elez…
Mississippi Law Firm Sues Cyber Insurer Over Coverage for Scam
Benjamin Hernandez reports: A Mississippi law firm is suing its cyber insurer, alleging the carrier wrongfully denied coverage for a roughly $150,000 loss stemming from an “elaborate” email scheme. Gore, Kilpatrick & Dambrino PLLC was duped into wiring funds to an account controlled by scammers posing as representatives from a company that was dissolved years…
Stormous claims to have protected health info on 600,000 patients of North Country Healthcare. The patient data appears fake. (3)
Update of July 17, 2025: Please see North Country Health’s statement in response to Stormous’s claims. North Country HealthCare is a federally qualified community health center that provides comprehensive medical services in 14 locations in 11 communities throughout Northern Arizona. Their services include family medicine, pediatrics, obstetrics and gynecology, dental care, behavioral health services, telemedicine,…
Qilin claims attack on Accu Reference Medical Laboratory. It wasn’t the lab’s first data breach.
On December 6, 2023, the Medusa Blog added ACCU Reference Medical Laboratory to their leak site with some screenshots as proof of claims. Claiming to have 1.2 TB of data, Medusa demanded $1 million to delete or download the data. When no payment was forthcoming, they leaked the data on their website and Telegram channel…