Muskogee City County Enhanced 911 Trust Authority (“MCC911”) confirmed yesterday that it experienced a ransomware attack earlier this year. According to a press release, MCC911 first detected unusual system activity on July 25, 2024 that indicated they had been the victims of a ransomware attack. MCC911 immediately began an investigation and took steps to contain…
Category: Breach Incidents
Hacker uses Telegram chatbots to leak data of top Indian insurer Star Health
Christopher Bing and Munsif Vengattil report: Stolen customer data including medical reports from India’s biggest health insurer, Star Health, is publicly accessible via chatbots on Telegram, just weeks after Telegram’s founder was accused of allowing the messenger app to facilitate crime. The purported creator of the chatbots told a security researcher, who alerted Reuters to…
Everything old is new again, part 2: Was U.S. Dermatology Partners hit twice within months?
Earlier today, DataBreaches reported that MCNA Dental allegedly suffered a cyberattack involving patient data. According to the threat actor who claimed responsibility for the attack (Everest Ransom Team), this incident was totally unrelated to a February 2023 ransomware attack by LockBit that was supposedly leaked in April 2023. In May 2023, MCNA Dental reported that…
Silence may not be golden: Visiting Physicians Network still silent one year after alleged data breach?
In September 2023, DataBreaches reported on an alleged ransomware attack involving Visiting Physician’s Network in Texas. The report provided screenshots of data leaked on the Threeam gang’s leak site and noted that Visiting Physician’s Network did not respond to inquiries about the breach. It is now one year later. DataBreaches has found no substitute notice,…
Proposed $65 million Lehigh Valley Health Network data breach settlement may compensate some victims $80,000
In 2023, a ransomware attack against Lehigh Valley Health Network by AlphV (BlackCat) involved the threat actors leaking nude photos of some cancer patients. In reporting on one of the first class action lawsuits launched against LVHN, DataBreaches pointed out how significant this situation and litigation might be, in part, because of the nude photos…
FTC Takes Action Against Security Camera Firm Verkada over Charges it Failed to Secure Videos, Other Personal Data and Violated CAN-SPAM Act
August 30, 2024 – The Federal Trade Commission will require security camera firm Verkada to develop and implement a comprehensive information security program to settle allegations the company failed to use appropriate information security practices, which allowed a hacker to access customers’ security cameras. Under a proposed order, which must be approved by a federal…