In early May, a new group of threat actors known as Nokoyawa added Canopy Children’s Solutions in Mississippi to their leak site. On June 2, Mississippi Children’s Home Society, CARES Center, Inc., Mississippi Children’s Home Services, Inc., d.b.a. Canopy Children’s Solutions (“Canopy”) a press release acknowledging that on April 4, they experienced an attack that…
Category: Breach Incidents
Mission Community Hospital attackers exploited vulnerabilites in Paragon and Cisco
As Mission Community Hospital in California continues to investigate a cyberattack in April, more details have emerged as to how the attack by RansomHouse threat actors occurred. As previously reported, the RansomHouse listing for Mission Community Hospital claimed to have 2.5 TB of data and provided some proof of claims. RansomHouse also included a note…
Rhysida ransomware group claims attack on Martinique
A ransomware group that first emerged in May has added the government of Martinique to its leak site. Although there is no current notice on Martinique’s Facebook page, on May 24, they posted a notice about the cyberattack: A machine translation of the notice reads: #Cyberattack Implementation of the continuity plan On May 16,…
NY Attorney General James Secures $300,000 from Online Sporting Goods Retailers for Failing to Protect Consumers’ Personal Information
NEW YORK – New York Attorney General Letitia James secured $300,000 from Sports Warehouse Inc. (Sports Warehouse), an online sporting goods retailer for failing to protect 2.5 million consumers’ personal data. Sports Warehouse, which owns the online sporting goods websites Tennis Warehouse, Running Warehouse, Skate Warehouse, and Tackle Warehouse, had poor data security that left it…
Infostealers: a threat that is still largely (too) stealthy
In September, Britton White and PogoWasRight.org teamed up to produce an explainer and caution about infostealers that was oriented to the public. Our article, Redline: Storing Passwords in your Browser Can Ruin Your Life (But Will Make Criminals VERY Happy!) included cautions about employees who work from home and who might have their login credentials…
As people headed out for the holiday weekend, breaches of protected health information were being disclosed. (2)
Update: The MCNA (Managed Care of North America) incident was reported to the Maine Attorney General’s Office as affecting a total of 8,923,662 people. Update 2, May 29: This incident was claimed by LockBit in March and data were leaked in April, but the data dump URLs were not working as of last check yesterday….