On January 20, the data protection officer for Credit Suisse AG filed a breach notification with the Maine Attorney General’s Office. According to their notice, a breach occurred on or about January 1, 2016. The exact date was unknown, and the breach reportedly wasn’t discovered until December 21, 2022. The summary description of the incident…
Category: Breach Incidents
India’s Public Education App Exposed Millions of Students’ Data
Vittoria Elliott and Dhruv Mehrotra report: A security lapse in an app operated by India’s Education Ministry exposed the personally identifying information of millions of students and teachers for over a year. The data was stored by the Digital Infrastructure for Knowledge Sharing app, or Diksha, a public education app launched in 2017. […] Files…
Impact of ransomware on healthcare: what’s confirmed and what’s just speculative?
Sunday musings….. What impact do ransomware attacks have on delivering healthcare services to patients? Some claims have been made, but are the claims supported by any objective data, or are people just guessing what the impact has been or could be? In this week’s news, a hospital in Illinois announced it will be temporarily closing…
Rundle Eye Care notifies patients of data breach
At some time before or in early October, the Everest Ransom Team hacked Rundle Eye Care in California. On January 11, Drs. Keith and Herman Rundle notified patients and the California Attorney General’s Office about the incident. In their notification, the doctors do not reveal precise dates of the attack or its discovery but claim…
BlackCat adds NextGen to its leak site, but …. where did it go?
On January 17, BlackCat (aka ALPHV) added NextGen to their leak site. On January 19, DataBreaches sent an email inquiry to NextGen asking when they were attacked, whether files had been encrypted, and whether any employee data or patient data had been accessed or exfiltrated. NextGen responded promptly and then sent the following statement: NextGen…
ODIN Intelligence website is defaced as hackers claim breach
Earlier this week, Zack Whittaker reported: The website for ODIN Intelligence, a company that provides technology and tools for law enforcement and police departments, was defaced on Sunday. The apparent hack comes days after Wired reported that an app developed by the company, SweepWizard, which allows police to manage and coordinate multi-agency raids, had a significant security…