Sometimes, 2+2 does not = 4, it seems. When employees falling for phishing attempts represent one of the two biggest preludes to a ransomware attack, why are 28% of IT leaders in a recent survey more concerned about malicious insiders than human error? Why are only 21% of those surveyed most concerned about human error?…
Category: Breach Incidents
Update: Clover Park School District notifies 1,583 impacted by ransomware incident
On May 26, DataBreaches.net reported on a ransomware attack on Clover Park School District in Washington state. The story had originally been broken by KIRO7, who had been sent screencaps by a district employee. As of May 26, and even as of June 2 in its last posted update, the district referred to the incident…
Parts of Kazakhstan e-gov portal infected with Razy malware
Razy malware has been around for a number of years now, and is still causing trouble. A Windows-based malware, one of the reasons that the malware has continued to be effective is that it can appear to be free software or a file on what would normally be a trusted site by the public, such…
ClearBalance notifying more than 209,000 patients who have medical expense loans
Many readers may never have heard of CSI Financial Services, LLC but as ClearBalance, the California firm services loans made by hospitals and providers to patients who need to finance medical expenses. A recent filing with the Maine Attorney General’s Office reveals that beginning on March 8, there was unauthorized access to some employee email…
Millennia Group notifying people of 2019 email breach
Ohio-headquartered The Millennia Companies are involved in housing management. On some date that this site does not yet know, they learned that there had been unauthorized access to some employee email accounts between October 21, 2019 and December 18, 2019. “The Millennia Companies immediately launched an investigation in consultation with outside cybersecurity professionals who regularly investigate…
Update on The Woodruff Institute ransomware incident
On June 20, DataBreaches.net reported that The Woodruff Institute in Florida had been attacked by “Grief” threat actors. At that time, the threat actors had dumped some files concerning business operations from the multi-location plastic surgery and dermatology practice, but other than about 50 laboratory test result reports for patients, there was not a tremendous number…