On September 21, the Mount Diablo Unified District notified parents of a breach involving the SchoolMessenger app by Intrado. Their letter explains that on September 14, 2020, the district was informed that “when certain parents were using the SchoolMessenger mobile application, they were able to view a list of roughly thirty (30) unique names, emails,…
Category: Breach Incidents
A nightmare breach involving psychotherapy records just got worse
There’s an update to previous post about a ransom situation in Finland impacting 40,000 psychotherapy patients at Vastaamo. As initially reported by Vastaamo, a psychotherapy practice with multiple offices and locations, they had been hacked and the hacker had acquired records of patients who had registered before the end of November 2018. Other sources reported…
Centerstone patients, employees impacted by data breach
Joseph Wenzel reports that Centerstone, a provider of substance abuse and mental health services, is notifying employees and patients of a breach: The investigation into the “IT security incident” started after an employee for Centerstone of Tennessee, Inc. noticed “unusual activity” involving their email account. Centerstone said an independent computer forensics firm found certain current…
Insider Threat: Vengeful Former Century 21 Employee Charged with Alleged Computer Tampering
October 21 – Manhattan District Attorney Cy Vance, Jr., today announced the indictment of HECTOR NAVARRO, 30, a former Human Resources systems administrator at Century 21’s Manhattan department store, for breaching the company’s network to steal and alter data. NAVARRO is charged in a New York Supreme Court indictment with Attempted Grand Larceny in the…
Misconfigured cloud storage bucket exposed Pfizer drug safety-related reports — researchers
For lo, these many years, DataBreaches.net has been reminding everyone that not all leaks or breaches involving medical or sensitive personal health information are covered by HIPAA. Today’s story is a reminder of that. vpnMentor recently contacted DataBreaches.net about a leak their research team, led by Noam Rotem and Ran Locar, had discovered. The leak…
More details emerge on Hall County, Georgia ransomware attack
As reported previously on this site, Hall County, Georgia had revealed a ransomware attack on October 7, but until now, we didn’t know who attacked them. Now the threat actors known as DoppelPaymer have added Hall County to their dedicated leak site. In their updates, the county had reported: At this time, there is no…