For a brief period yesterday, visitors to Hive ransomware’s leak site would have seen Partnership HealthPlan of California listed. According to the listing, the threat actors claim to have exfiltrated 850,000 unique records with name, Social Security Number, date of birth, address, contact information, and more. Hive claimed that they had 400 GB of stolen…
Category: Breach Incidents
CA: North Orange County Community College District updates students and faculty on breach
Add North Orange County Community College District (NOCCCD) to any list you may be Curating of colleges that have suffered breaches. According to a report from the college, beginning on December 7, 2021, an unauthorized individual accessed the networks of both Cypress College and Fullerton College and may have exfiltrated copies of files. The attack…
Oklahoma City Indian Clinic impacted by Suncrypt’s ransomware attack
The Oklahoma City Indian Clinic (OKCIC) serves 20,000 patients from more than 200 different Native American tribes. A note on their website and their Twitter account currently apologizes that due to technological issues, the pharmacy automatic refill line and mail order services will be down for an indeterminate amount of time. The home page of…
Weekend update: Christie Clinic, CSI Laboratories report breaches
Christie Business Holdings Company, P.C. (“Christie Clinic”) in Illinois Christie Business Holdings Company, P.C. (“Christie Clinic”) in Illinois issued a breach notice that is also prominently posted on their website. According to their notice, an unauthorized actor gained access to their system between July 14, 2021 and August 19, 2021. The unauthorized actor did not…
Trial starts next week in case of law firm sued by insurer for not disclosing thedarkoverlord hack
A trial involving a lawsuit against a law firm that was hacked in 2016 and paid extortion to thedarkoverlord but never notified their clients of the breach starts next week in Missouri. For some of the background, see previous coverage on this site: Missouri law firm sued by insurer for not disclosing 2016 hack by…
TX: Val Verde Regional Medical Center patient data dumped by LockBit
Val Verde Regional Medical Center (VVRMC) appears to have been the victim of a ransomware attack involving LockBit. According to LockBit, Val Verde Memorial Hospital was compromised and 96,000 patient records were exfiltrated. The listing was added to the leak site on March 16, with LockBit noting that the patient records had the following table…