George W. Rhodes reports: A class action lawsuit has been filed against Sturdy Memorial Hospital alleging it failed to properly protect personal patient information that was stolen in a ransomware attack earlier this year. […] “Defendant maintained and secured the PII (personally identifiable information) in negligent manner by failing to safeguard against ransomware attacks,” the…
Category: Breach Incidents
VaxiCode flaw: Quebec refused to give immunity to the whistleblower
Thomas Gerbet reports (machine translation follows): Contrary to what the Minister of Digital Transformation, Eric Caire, said, the Quebec government has never offered immunity to the computer scientist who discovered the security flaw in the VaxiCode health passport application. Exchanges of emails obtained by Radio-Canada reveal the underside of this affair and show that the…
Sault Ste. Marie Police Service victim of ransomware attack
Not much has been revealed at this point, but Sault St. Marie Police Service has posted a statement disclosing that they have been the victim of a ransomware attack: Approved by: 361 – August 30, 2021 On Thursday, August 26, 2021 we became aware of a virtual ransomware attack on our systems. At no time…
Less than two months after its launch and inaugural hack, GETTR is leaking data
GETTR, a social media platform similar to Twitter but frequented by people who don’t feel welcome on Twitter, officially launched on July 4th, 2021. It may be hard to remember what came first — the official launch of the platform run by former President Trump’s ex-spokesman Jason Miller or its first data breach, which was…
Atlanta Allergy & Asthma first mails notices to patients; data was dumped back in March
On March 3, DataBreaches.net reported that Atlanta Allergy & Asthma had apparently been compromised by Nefilim threat actors, who had dumped more than 2 GB of patient-related files on a dedicated leak site. DataBreaches.net not only reported that, but provided a redacted screencap and noted that this site had reached out to the covered entity…
Lincoln-based Ameritas sued over 2019 data breach
Lori Pilger reports: A North Carolina woman has sued Lincoln-based Ameritas in connection to a 2019 data breach that disclosed her personal information, along with at least 39,000 other customers. Cynthia Weisenberger’s attorney, Vince Powers, said in the past two years, she’s experienced a “slew of harms.” She’s lost $280 due to fraudulent activity on her…