There’s an update to previous post about a ransom situation in Finland impacting 40,000 psychotherapy patients at Vastaamo. As initially reported by Vastaamo, a psychotherapy practice with multiple offices and locations, they had been hacked and the hacker had acquired records of patients who had registered before the end of November 2018. Other sources reported…
Category: Breach Incidents
Centerstone patients, employees impacted by data breach
Joseph Wenzel reports that Centerstone, a provider of substance abuse and mental health services, is notifying employees and patients of a breach: The investigation into the “IT security incident” started after an employee for Centerstone of Tennessee, Inc. noticed “unusual activity” involving their email account. Centerstone said an independent computer forensics firm found certain current…
Insider Threat: Vengeful Former Century 21 Employee Charged with Alleged Computer Tampering
October 21 – Manhattan District Attorney Cy Vance, Jr., today announced the indictment of HECTOR NAVARRO, 30, a former Human Resources systems administrator at Century 21’s Manhattan department store, for breaching the company’s network to steal and alter data. NAVARRO is charged in a New York Supreme Court indictment with Attempted Grand Larceny in the…
Misconfigured cloud storage bucket exposed Pfizer drug safety-related reports — researchers
For lo, these many years, DataBreaches.net has been reminding everyone that not all leaks or breaches involving medical or sensitive personal health information are covered by HIPAA. Today’s story is a reminder of that. vpnMentor recently contacted DataBreaches.net about a leak their research team, led by Noam Rotem and Ran Locar, had discovered. The leak…
More details emerge on Hall County, Georgia ransomware attack
As reported previously on this site, Hall County, Georgia had revealed a ransomware attack on October 7, but until now, we didn’t know who attacked them. Now the threat actors known as DoppelPaymer have added Hall County to their dedicated leak site. In their updates, the county had reported: At this time, there is no…
Privacy nightmare for Toledo Public Schools: Hackers dumped student and employee data
By mid-September, it was clear that school districts were under increased threat of ransomware attacks. In fact, when Clark County School District (CCSD) in Las Vegas and Fairfax County Public Schools (CFPS) in Virginia were added to the Maze cartel’s leak site, it seemed to portend potentially big data dumps. Since that dump, Maze dumped…