Premier Kids Care, Inc. (PKC) of Georgia provides specialized pharmacy and home clinical services for children with diabetes, endocrinological, and perinatal needs. On April 6, 2020, PKC discovered it had been targeted by a cyberattack and that an unauthorized actor had gained access to PKC systems. An investigation into the incident revealed that the unauthorized…
Category: Breach Incidents
DoppelPaymer dumps data from public school districts in Mississippi and Montana
Why ransomware threat actors go after small school districts with few resources still puzzles me. The districts may be “low-hanging fruit” from a security perspective, but they generally do not have the resources to pay big ransom demands. So why target them? My puzzlement notwithstanding, a number of ransomware teams do attack k-12 districts. DoppelPaymer…
Threat actors attack diagnostic laboratories in Virginia and New York
Attacks on hospitals by ransomware threat actors continue to make headlines, as do attempts to hack laboratories or entities involved in COVID-19 related research. Attacks on diagnostic laboratories without an obvious COVID-19 connection tend to garner fewer headlines but should be of no less concern, as the ability to diagnose health conditions correctly is a…
And the ransomware attacks just keep on coming….
Marieville in Canada Dassault Falcon Jet in France (attacked by RagnarLocker who exploited Shitrix vulnerability in March and reportedly enjoyed a lengthy stay inside their systems) Amg Energia in Italy TSYS in Georgia Netgain in Minnesota The Socorro Independent School District in Texas The city of Independence in Missouri And there are many more…. as…
Norwegian DPA imposes administrative fine to Østfold HF Hospital
From EDPB on November 25: The Norwegian Data Protection Authority has decided on an administrative fee of NOK 750,000 to Østfold HF Hospital. The background is that in the period 2013-2019, the hospital stored report extracts from patient records outside the safe zone. The case started with a notice of personal data breach from the…
Individual Pleads Guilty to Participating in Internet-of-Things Cyberattack in 2016
There’s an update to a case previously reported on this site in 2016. From the U.S. Department of Justice: An individual, formerly a juvenile, pleaded guilty to committing acts of federal juvenile delinquency in relation to a cyberattack that caused massive disruption to the Internet in October 2016. Acting Assistant Attorney General Brian C. Rabbitt…