The American Armed Forces Mutual Aid Association, a non-profit organization in Virginia that provides insurance and benefits services to the military community, is notifying 161,621 individuals of a hacking incident. On January 29, AAFMAA became aware of suspicious activity on its system. Their investigation revealed that an unauthorized party had first gained access to certain…
Category: Breach Incidents
Terminated: Texas Medicaid subcontractor dumped after data breach in ransomware attack from Russia
Robert T. Garrett reports that a breach that significantly impacted Texas Medicaid patients last year was not fully or accurately disclosed to the state by the subcontractor at the time. A Texas Medicaid subcontractor has been terminated after a data-privacy breach caused by a ransomware attack from Russia last year exposed the personal information of…
Woodcreek Provider Services notifies more than 210,000 patients of Netgain Technology ransomware incident
Back in January, this site noted that a ransomware attack on Netgain Technology LLC had impacted Ramsey County. Previous coverage of the Netgain Technology attack had reported that Netgain had stated that they were victims of a ransomware attack on November 24th, 2020 and On December 4th, customers began receiving emails from Netgain stating that…
TX: Elara Caring notifies more than 100,000 patients after corporate email accounts hacked
Elara Caring, a provider of home-based care, suffered a data security breach that they learned about in mid-December. Last month, they started notifying more than 100,400 patients. A notice on their web site explains that a number of corporate email accounts had been compromised — accounts that contained both employee and patient information. Elara Caring…
AllyAlign notifies 76,348 members and providers of ransomware attack
AllyAlign Health (AAH), a Medicare Advantage special needs plan administrator, recently notified 76,348 members and providers of an attempted ransomware attack. But how successful were the threat actors? And what could the Virginia firm figure out and what couldn’t they figure out based on their investigation? According to AAH’s notification letter, the attack occurred on…
UK Reputation Risk Intelligence Company Left 30TB Server Exposed
WizCase researchers recently revealed that a U.K. analytics firm, Polecat, left 30TB of data and billions of records exposed on an elasticsearch server that was not secured. WizCase reports: Polecat, which successfully predicted the outcome of the 2016 US Presidential Election, had potentially conducted a similar set of research less than a week before the…