After multiple unsuccessful attempts to get a popular Japanese medical online consultation site to secure a misconfigured bucket, researchers at SafetyDetectives have decided to publicly disclose the leak. Doctors Me provides customers with on-demand access to professional medical advice. People can sign up for a monthly unlimited access plan (for less than $3.00 per month)…
Category: Breach Incidents
“It took 6 hours to get access to every IT system” of Argentina’s Senate – Vice Society
The web site of Argentina’s senate was hit by a ransomware attack on or about January 12. Unlike other entities that do not disclose quickly, the Senate issued a statement on Twitter about Vice Society’s attack two days later: ?El Senado de la Nación sufrió el 12 de enero a las 4 AM un ataque…
WI: New development in Janesville school district ransomware incident
In October 2021, the School District of Janesville in Wisconsin disclosed that they had experienced a ransomware incident. At the time, they said that no data had been accessed or destroyed and that they had not received any ransom demand. In short order, their claims were challenged on a Russian-language forum where someone calling themself…
WVa: Wheeling Health Right victim of ransomware attack
From the notice on their website: Notice Regarding Recent Data Breach What Happened? On January 18, 2022, Wheeling Health Right discovered that our organization was victimized by a ransomware attack that encrypted our systems. Upon discovery of the security incident, we engaged legal counsel and a data breach remediation firm to conduct an investigation into…
Comprehensive Health Services Pays False Claims Act Settlement Involving EMR Security
Marianne Kolbasuk McGee reports: A healthcare services contractor has agreed to pay a $933,000 settlement in a federal whistleblower case involving alleged false claims by the entity about the security of electronic medical records containing the information of military personnel, diplomats and contractors. The settlement is the first under the Department of Justice’s Civil Cyber-Fraud Initiative,…
PayTM clarifies RBI bar on new customers
Economic Times reports: The RBI barred Paytm Payments Bank from taking on new customers on March 11 because it had allowed data to flow to servers abroad in violation of India’s rules, and didn’t properly verify its customers, Bloomberg reported on Monday, citing a person familiar with the matter. Annual inspections by the Reserve Bank…