Le Dauphiné reports (translated): Like Isle-sur-la-Sorgue, this Friday, hackers also targeted the computer system of the City of Morières-lès-Avignon. A complaint has not yet been filed but the gendarmes of the Avignon company are aware of this malicious act. In the other case, unnamed threat actors had demanded 500,000 euros for the decryption key — the same…
Category: Breach Incidents
CareFirst BlueCross BlueShield Community Health Plan District of Columbia discloses breach
Maggie Miller and Laura Kelly report: CareFirst BlueCross BlueShield’s Community Health Plan District of Columbia (CHPDC) suffered a data breach carried out by what it described as a “foreign cybercriminal” group in January that potentially impacted sensitive data, the company told customers this week. The insurance provider notified customers in writing through a letter obtained…
Signify Health notifies covered entities’ patients of possible access to their PHI
Signify Health, LLC is a business associate to entities covered under HIPAA. On October 12, 2020, they discovered that an employee had published his login credentials to a subscription-based job board. The employee, described as a low-level IT Support Specialist, was seeking a coding specialist to help him write a job-related script. He would later…
Axios Italia hit; thousands of schools potentially impacted
Andrea Grassi reports: One of the most used electronic register applications by Italian schools, Axios RE, is offline from the night of Friday 2 to Saturday 3 April due to a ransomware attack. Many of the ransomware attacks strike right on weekends or at the beginning of bridges and holidays, so that the malware has…
Education nonprofit Edraak ignored a student data leak for two months
Zack Whittaker reports: Edraak, an online education nonprofit, exposed the private information of thousands of students after uploading student data to an unprotected cloud storage server, apparently by mistake. The nonprofit, founded by Jordan’s Queen Rania and headquartered in the kingdom’s capital, was set up in 2013 to promote education across the Arab region. The…
Statement From Atlantic Media on Unauthorized Access of Its Servers
The Atlantic posted a statement on their site yesterday: On March 1, 2021, Atlantic Media, a minority shareholder and former corporate owner of The Atlantic, became aware that a serious issue was affecting its systems. Upon deeper investigation, it was discovered that an unauthorized actor had accessed its servers. Atlantic Media immediately engaged external forensics…