Mental Health Partners (also known as “Mental Health Center of Boulder County Inc.) issued a press release this week about an employee email account compromise discovered in late March. An investigation revealed that the personal information of some MHP clients and current and former employees may have been accessed or taken during the incident. The…
Category: Breach Incidents
ZA: Social grant applications found dumped in Ndedwe
Nothando Mkhize reports that a pile of social grant applications were found on a street in Ndwedwe. The South African Post Office is investigating to see if they were stolen from a post office during a burglary last month. In a puzzlingly vague statement, a spokesperson noted that an employee has been suspended. But why?…
Ransomware – The New (Too-High) Cost of Doing Business
Gemini Advisory has released a paper that makes the point that in 2020, it may be best to view ransomware incident costs as part of the cost of doing business. And with more people working from home these days, there is an increased risk of security incidents, as threat actors may be able to relatively…
AU: HealthEngine ordered to pay $2.9m for ‘misleading conduct’
Matt Woodley reports: The settlement saw HealthEngine admit to providing non-clinical personal information – such as names, dates of birth, phone numbers and email addresses – to nine different third-party private health insurance brokers without properly informing consumers. This arrangement earned the online medical booking platform more than $1.8 million over a period of four…
FritzFrog and Lucifer Monero malware botnets putting more at risk
Jai Pratap reports: According to a study by Guardicore Labs, a Monero malware botnet known as FritzFrog has been deployed to ten millions of IP addresses. The malware has largely targeted governmental offices, educational institutions, medical centers, banks, and telecommunication companies, installing a Monero mining app known as XMRig. The study explains that FritzFrog uses a brute-force…
UK: Man charged with cyber crime – Milton Keynes
The South East Regional Organised Crime Unit (SEROCU) reports that a man has been charged with cyber crime offences. Liam Keenan, aged 20, of Century Avenue, Milton Keynes, was charged on 12 August 2020 with the following: Between 14 January and 13 March he committed unauthorised acts with intent to impair operation of or prevent…