Breach Incidents – Page 20 – DataBreaches.Net

Bolton Walk-In Clinic in Ontario: lock down your backup already!

Posted on December 3, 2024June 12, 2025 by Dissent

DataBreaches hates reporting on an incident when the entity has not yet secured misconfigured storage, but after four months of futile efforts to get a Canadian clinic to respond to responsible disclosures, maybe publication will help get them off the dime. Bolton Walk-In Clinic in Ontario has a data protection policy that says: We are…

Attorney General James and DFS Superintendent Harris Secure $11.3 Million from Auto Insurance Companies over Data Breaches

Posted on November 25, 2024 by Dissent

NEW YORK – New York Attorney General Letitia James and New York State Department of Financial Services (DFS) Superintendent Adrienne A. Harris today secured $11.3 million in penalties from two auto insurance companies, the Government Employees Insurance Company (GEICO) and The Travelers Indemnity Company (Travelers), for having poor data security which led to the personal information…

Pacific Pulmonary Medical Group patient information dumped by Everest Ransomware Team

Posted on November 23, 2024November 23, 2024 by Dissent

The Pacific Pulmonary Medical Group (PPMG) in California has a significant data breach problem, but if you were to visit its website today, you’d have no clue that anything is amiss. On October 25, Everest Team added PPMG to its dark web leak site. The unencrypted personal and protected health information that they subsequently dumped…

Thai loyalty membership card data of 5 million customers put up for sale on hacking forum

Posted on November 20, 2024 by Dissent

Central Group is a multinational conglomerate in Thailand that describes itself as one of the largest private commercial conglomerates in Thailand with more than 50 subsidiaries and six key business lines. In October 2021, DataBreaches reported an attack on the Central Restaurant Group by threat actors called DESORDEN. When negotiations failed, DESORDEN revealed details about…

NY: Equinox notifies clients and employees of April data security incident

Posted on November 18, 2024November 18, 2024 by Dissent

On November 15, Equinox notified clients and staff members about what they described as a data security incident on April 29. With a little digging, DataBreaches realized that it was an attack by LockBit3.0. Equinox is a human services organization that serves clients in the capital region of New York State, providing services to 3,500…

Veterans Day 2024

Posted on November 11, 2024November 11, 2024 by Dissent

Each year, there are fewer and fewer veterans of WWII. My dad was a veteran of that war. He died many years ago, and sometimes I still think about how he never really talked to me about it. Oh, he told me an amusing story or two from his basic training days at Fort Dix,…