Breach Incidents – Page 361

If you advertise it “100% safe and secure,” it’d better be

Posted on August 6, 2016 by Dissent

NY Announces $100K Settlement With E-Retailer After Data Breach Exposes Over 25K Credit Card Numbers NEW YORK – Attorney General Eric T. Schneiderman announced a settlement with Provision Supply, LLC, d/b/a EZcontactsUSA.com, involving a data breach resulting in the potential exposure of over 25,000 credit card numbers and other cardholder data. EZcontactsUSA.com has agreed to…

Data breaches at Advocate Health Care leads to biggest ever settlement

Posted on August 6, 2016 by Dissent

I’ve had a lot of coverage of Advocate Health’s breaches over the past years that you can access here. Here’s is HHS’s announcement of the settlement of their charges: Advocate Health Care Network (Advocate) has agreed to a settlement with the U.S. Department of Health and Human Services, Office for Civil Rights (OCR), for multiple…

Extortion demand on Athens Orthopedic Clinic escalates as patient data is dumped

Posted on August 3, 2016 by Dissent

On June 26, DataBreaches.net reported that several databases with patient information had allegedly been hacked and put up for sale on the dark net by hackers calling themselves TheDarkOverlord (TDO). This site subsequently identified one of the entities as the Athens Orthopedic Clinic in Georgia, and contacted them to alert them that it appeared that…

Ohio Urology Hacked, 520K Files, 156GB Leaked – RansomWare files Found!

Posted on August 2, 2016 by Lee J

Early today a hacker using the handle pravyy sector announced a leak of data from Central Ohio Urology and made claims that it was 156GB in total. The dump of data appears to be a copy of a file system from software used in medical practices to help organize and share documents around the local…

Central Ohio Urology Group hacked, PHI dumped: hacktivist (Updated)

Posted on August 2, 2016 by Dissent

A Ukrainian hacktivist claims to have hacked and dumped 156 GB of patient data from Central Ohio Urology Group in Ohio. The alleged hack was announced Tuesday morning by the @PravSector account, who posted an unredacted screen shot and a link to the data dump on Google Drive. The data fields in the screen shot…

DHS Announces Cyber Incident Reporting Information: US-CERT

Posted on July 30, 2016 by Dissent

The United States Department of Homeland Security (DHS) has released guidelines and points of contact for reporting cyber incidents to the Federal Government. This communication follows the recent release of Presidential Policy Directive 41 (PPD-41)—United States Cyber Incident Coordination—which outlines how the Federal Government will handle cyber incidents. Users and administrators are encouraged to review these documents…