Infosys McCamish Systems (“IMS”) in Atlanta provides software and services to the life insurance industry. In October 2023, it was the victim of a ransomware attack that affected 6,078,263 people. As they explain in a notification to the Maine Attorney General’s Office, they were providing notification on their own behalf as a data owner and…
Category: Breach Incidents
Blackcat may be gone, but recovery from its attacks is not over
The AlphV (aka Blackcat) ransomware group may have disappeared after a law enforcement seizure in December, and then an exit scam by its admin in March, but the impact of some of its breaches continues. While the Change Healthcare breach continues to make headlines, earlier breaches by Blackcat also continue to impact victims. In July…
Maryhaven addiction and treatment centers hit by ransomware attack
On June 13, the INC Ransom group added Maryhaven in Ohio to their leak site. DataBreaches subsequently contacted Maryhaven to inquire what it was doing in response to INC’s claims. They did not reply, but subsequently posted a notice on their website that said, in part: We are aware that some of our systems are…
Consulting Radiologists LTD notifying 583,824 patients about February attack
Two ransomware groups claimed to have attacked Consulting Radiologists. The notification is silent about any ransom demands. Consulting Radiologists LTD. (“CRL”)” in Minnesota is a physician-owned practice. On February 12, 2024, they detected suspicious activity on their network. An investigation revealed that an unauthorized actor had accessed certain files and data. Those files contained patient…
Snowflake to Close Hacking Probe Into Attack Targeting Clients
Charles Gorrivan and Brody Ford report: Snowflake Inc. plans to close its own investigation this week into a hacking campaign that ensnared as many as 165 of its customers. The cloud data and analytics company hasn’t detected any unauthorized access into customer accounts since early last week, Chief Information Security Officer Brad Jones, said in an interview with Bloomberg News….
Google Database Reveals Thousands of Privacy Incidents
Joseph Cox reports: Google has accidentally collected childrens’ voice data, leaked the trips and home addresses of car pool users, and made YouTube recommendations based on users’ deleted watch history, among thousands of other employee-reported privacy incidents, according to a copy of an internal Google database which tracks six years worth of potential privacy and…