On August 23, DESORDEN alerted DataBreaches to another one of their attacks. This one involved the PT JASAMARGA TOLLROAD OPERATOR, Indonesia’s largest major tollway and highway operator. According to DESORDEN’s statement: This data breach involved 252 GB of data, coding and documents, across 5 of their servers. The data breach involves their users, customers, employees,…
Category: Breach Incidents
Hive starts dumping patient and employee data from Baton Rouge General Health System
On July 15, DataBreaches reported that Baton Rouge General Medical Center in Louisiana had been the victim of a significant ransomware attack. Our report attributed the attack to Hive although Hive was publicly denying responsibility at the time and claiming DataBreaches had “incorrect info.” Our information was correct. On Tuesday, Hive added the health center…
Today’s reminder to read email alerts and acknowledge them…
Yesterday, Chum1ng0 spotted a forum listing that affects a regional office in the Illinois k-12 education system. DataBreaches reached out to that regional office by email yesterday morning to alert them. Emails were sent to multiple people, including the Superintendent and head of IT. The emails provided them with specific information from the listing. Did…
Transparency #FAIL: Why won’t Anthem/Elevance Health answer a simple question about breaches?
A DataBreaches opinion piece. You might think a giant insurer like Anthem, which has experienced at least several breaches over the years — including one of the most significant breaches ever — would understand the importance of transparency by now. Apparently not. On May 24, Anthem (now known as Elevance Health) posted a notice on…
MD: Onyx Technology alerts clients and patients of ransomware incident
On August 12, Onyx Technology of Maryland began notifying regulators and others about a ransomware attack they experienced. According to their notification to the Montana Attorney General’s Office on behalf of Independent Care Health Plan (iCare), they discovered the attack on June 28. Their investigation subsequently found that “a server may have been removed or…
California Department of Corrections and Rehabilitation notifies staff, visitors, and incarcerated individuals of breach
The California Department of Corrections and Rehabilitation (CDCR) issued a breach notification this week. Because the notification mentions COVID-19 testing, at first, DataBreaches thought it was the incident CDCR had disclosed last month, but no, it turns out that that was a different incident. The newly revealed breach affects staff, visitors, and others tested for…