There are a number of journalists or sites that monitor news and legal notices for disclosures of breaches involving protected health information (PHI). And it’s tempting, when you see that the entity is a business, to just skip on by. But don’t. If a business has a health plan for employees, then they may be…
Category: Breach Incidents
IN: Carmel Clay Schools notifying 15,817 after compromise of employee email accounts
On February 24, 2021, Carmel Clay Schools in Indiana discovered suspicious activity involving employee email accounts. Their investigation revealed that there had been unauthorized access between February 15 – February 24. It took the district, working with third-party forensic specialists, until August 31 to determine everyone who may have had personal information in the compromised…
VA: Greensville County Public Schools hit by Grief threat actors
Grief threat actors have added another k-12 district to their list of victims who have refused to pay their ransom demands. Greensville County Public Schools in Emporia, Virginia was added to Grief’s dark web leak site on September 21. But by September 15, the district had already disclosed that they were dealing with a cyberware…
How ransomware affects stock market share prices: report
Paul Bischoff reports: Comparitech researchers analyzed historical share price data of 24 companies listed on the New York Stock Exchange. For each stock, We pulled the closing share prices ranging from six months prior to a ransomware attack being publicly reported up to three years afterward. We additionally broke down the data by the type…
Cybercriminals Abuse Donation Sites for Card Testing
From the what-will-they-think-of-next department. Researchers at GeminiAdvisory.io have an interesting report out this morning about how criminals use donation sites to see if stolen card numbers are working. As a past victim of stolen card numbers, I am used to seeing fraudsters make small charges on the card just to see if it’s working. But I…
KS: Pottawatomie Co. cyber attack encrypts “multiple servers,” extent unclear
Chris Fisher reports: Officials in Pottawatomie County are assessing the extent of a cyber attack discovered last week. Pottawatomie Co. Public Information Officer Becky Ryan confirms that county IT staff discovered an active cyber attack on Friday, September, 17. Ryan says the breach encrypted multiple servers, which prevented the access of many systems used every day….