Joshua Ceballos reports: All Priscilla Haring wanted from her divorce attorney, Richard Glenn Ozelie, was a divorce. But, according to her complaint filed in Broward civil court in March, what she got instead was scores of confidential files belonging to “a minimum of 96 individuals” — a potentially huge breach of ethics by her erstwhile attorney. Read more…
Category: Breach Incidents
Insufficient Data Security and Disregard for Student Data Privacy Plague the DeKalb County School District; With Commentary by Jim Siegl
Keegan Brooks writes: The DeKalb County School District has been making thousands of files containing sensitive student and staff information widely accessible to anyone in the district. Types of information exposed have included social security numbers, academic records, medical forms, course transcripts, standardized test scores, discipline records, and the 504/IEP information of students, among others….
Sunday notes: Welldyne, North Alabama Bone & Joint Clinic disclose breaches affecting patient data
A Sunday two-fer on health data breaches: WellDyneRx, LLC (“WellDyne”) issued a press release on May 6 concerning an incident they first detected on December 2. The Florida-headquartered pharmacy benefits service provider’s investigation discovered that there was unauthorized access to an email account between October 30, 2021, and November 11, 2021. “Although there is no…
Cybercrime loves company: Conti cooperated with other ransomware gangs
Seems to be a lot of Conti-related analyses this week, as well as the $10 million reward offered by the government for information leadings to Conti’s leaders. From Intel471: Software developers often depend on the collective knowledge of the industry to build their products. Whether it’s through reverse engineering, poaching talent, or straight up cloning…
Conti and Hive ransomware operations: Leveraging victim chats for insights
Kendall McKay and colleagues Paul Eubanks and Jaime Filson of Talos issued a report this week with some interesting insights. EXECUTIVE SUMMARY Through open-source research, we obtained and analyzed over four months of chat logs — more than 40 separate conversations — between Conti and Hive ransomware operators and their victims. The findings in this…
Update: U.S. v. Robert Purbeck aka “Lifelock”
Long-time readers may recall that in 2017 and 2018, DataBreaches.net reported on hacks of two medical practices by someone calling himself “Lifelock.” DataBreaches’ past reporting on him can be found in this July, 2017 post (see comments under the post), in two 2018 posts, and then a post in response to a press release from…