A class action lawsuit has been filed in a California federal court against workplace management software company UKG Inc. UKG makes timekeeping and payroll management software and offers Kronos Private Cloud services. As a result of a ransomware attack in December, employees of the firm’s clients were not paid at all, were paid late, or…
Category: Breach Incidents
287,652 South Denver Cardiology Associates patients notified of breach
South Denver Cardiology Associates (SDCA) recently disclosed that it began the new year with a data security breach that they first detected on January 4. Initiating their incident response plan, their investigation determined that an unauthorized person accessed their network between January 2, 2022 and January 5, 2022. During that time, certain files stored on…
UK’s ICO hits criminal defense firm Tuckers Solicitors with monetary penalty after ransomware attack
There’s an interesting monetary penalty notice involving a UK law firm stemming from a ransomware attack in 2020 and the ICO’s investigation of their data protection and security. The Information Commissioner announced today that it has issued Tuckers Solicitors a monetary penalty under section 155 of the Data Protection Act 2018 (“the DPA”). The penalty…
Unable to determine what files were accessed, Norwood Clinic notifies all 228,103 patients
Norwood Clinic in Birmingham, Alabama is notifying 228,103 patients of a hacking incident that left them unable to determine what, if anything, had been accessed. In a notification to the Maine Attorney General’s Office, the clinic’s external counsel reported that the breach began on September 20 and was discovered on October 22. The types of…
Yet more data from the Sea Mar Community Health Center data breach appears on the internet
If Herman’s Hermits sang about the latest development in the Sea Mar Community Health Center data breach, they’d probably sing: Third verse, same as the first A little bit louder and a whole lot worse Last month, DataBreaches.net reported that Sea Mar Community Health Center in Washington state had been sued in November, weeks after…
Update: Central Indiana Orthopedics notifying 83,705 of October data breach
In October, 2021, this site reported that Central Indiana Orthopedics (CIO) had promptly disclosed a data security incident involving Grief threat actors. This week, CIO’s external counsel notified the Maine Attorney General’s Office about the incident, reporting that 83,705 patients were impacted, total. Types of information involved included name, address, Social Security number, and limited…