Jeremiah Jacobsen has an update to the “encryption event” previously disclosed by Minneapolis Public Schools (MPS). [Note: MPS’s phrase “encryption event” appeared to be a ridiculous — and dare we say, sleazy– attempt not to call it a “ransomware attack.” The district still has not described it as ransomware attack.] Minneapolis Public Schools released a…
Category: Breach Incidents
Lubbock Heart and Surgical Hospital sued for breach where no one knows for sure whether data was accessed or acquired
If the victim of a cyberattack cannot determine whether data was accessed or acquired, should that increase the damages sought by plaintiffs in a class action suit? Or should it get the suit tossed out because the plaintiffs can’t prove any theft of their data? Kelly Mehorter reports about a class action lawsuit filed against…
Sentara Health notifying 741 patients after mistake by Coronis Health employee
In a refreshingly straightforward breach disclosure, Sentara Health in Virginia reports that on December 19, an anonymous individual called their Compliance Hotline to alert them that while searching for something online, the called had stumbled across an exposed file with patients’ Medicare billing information. Sentara quickly verified the caller’s report and determined that the file…
Another Texas school district with a data breach? (UPDATED)
LockBit has added White Settlement Independent School District in Texas to their leak site, with a proof pack that suggests that the threat actors were able to access — and may have exfiltrated — a lot of files. The listing was added yesterday. There is no notice on WSISD’s website that DataBreaches could find…
553 days from discovery to notification? DataBreaches asked Dental Health Management Solutions why.
Dental Health Management Solutions (“DHMS”) in Texas describes their services on LinkedIn as providing comprehensive dental services to both the government, public and private customers since 2003. We specialize in Military Readiness for mobile and portable dentistry nationwide and in the U.S territories. We also provide dental services to Nursing Homes, Assisted Living facilities, and…
6 Class Actions: Lawyers Across the Country Move Quickly After Hospital Data Breach
Charles Toutant reports: A New Jersey hospital has been hit with six class action suits after hackers obtained patient information in a data breach. CentraState Medical Center allegedly failed to take adequate precautions to prevent such attacks, and then compounded the error by waiting six weeks to notify plaintiffs and class members about the breach,…