Exposed database backups discovered and reported by researcher @JayelTee are now being reported in more mainstream news after OrthoMinds issued a press about the incident. Marianne Kolbasuk McGee reports: A vendor of cloud-based orthodontic practice software is notifying an undisclosed number of patients that their data was exposed to the internet for 10 days last…
Category: Breach Incidents
Watsonville Community Hospital still hasn’t notified all those affected by a November data breach; employees are reporting tax refund fraud
Felix Cortez reports: Just months after Watsonville Community Hospital was hit by a cyber-attack, roughly 20 employees at the hospital now say they’re the victims of identity theft. “We heard from a few of our employees that they reported there were fraudulent tax filings in their name, so someone else had tried to file a…
What is WikiLeaksV2 doing with a ransomware gang? Spoiler alert: It’s not extortion.
As previously reported on this site, in September 2023, Cardiovascular Consultants Ltd. (CVC) in Arizona experienced a ransomware attack. In October 2023, the Qilin ransomware group added CVC to its leak site, claiming to have exfiltrated 520,961 files and 206 GB of data. And in December 2023, CVC announced the breach in a substitute notice…
Appellate court upholds sentence for former Uber cyber executive Joe Sullivan
Jonathan Greig reports: The conviction of former Uber chief security officer Joe Sullivan on obstruction of justice charges was upheld by the U.S. Court of Appeals for the Ninth Circuit in California this week after the cybersecurity expert disputed several aspects of his sentence and charges. Sullivan was given three years probation by a U.S….
Breach notifications needed to be made faster in 2024. Instead, they were made more slowly.
Although some members of the public may not realize it, not all U.S. medical practices or practitioners are covered by HIPAA. But for entities that are regulated by HIPAA, HIPAA has some requirements for notifying patients about reportable breaches. The first thing to understand is that for regulated entities, a breach is considered “discovered” on…
FMS: YAP Health Services disrupted by ransomware attack
The state of Yap is one of the four states that make up the Federated States of Micronesia, along with the states of Pohnpei, Chuuk and Kosrae. Yap is the Western-most island in the FSM, located about midway between Guam and Palau. From the YAP Health Services Facebook Page on March 12: Cyberattack Disrupts Yap…