University Urology (UU) in New York City recently posted a notice about an incident on their website. Their notice, dated May 1, explains that on or about February 1, 2023, UU detected suspicious activity in its environment. The investigation revealed that an unauthorized actor had gained access to protected health information stored in UU’s system….
Category: U.S.
Lake Dallas Independent School District notifies 21,982 Texans of breach
In April, the Royal ransomware gang added Lake Dallas Independent School District in Texas to its leak site. Quoting the district’s description of itself, the attackers commented: Lake Dallas Independent School District has a vibrant, growing student population, an excellent array of programs, a strong curriculum, and a progressive, innovative atmosphere. Seems like everything…
Hillsborough County elections official says network was ‘illegally breached’
Colin Wolf reports: Less than a week after the 2023 Tampa Municipal Runoff Election results were officially certified, local officials are now saying a server at the Hillsborough County Supervisor of Elections Office was “illegally breached.” In a statement released Wednesday afternoon, Hillsborough County Elections Supervisor Craig Latimer stated that the breach did not interfere with…
City of Dallas impacted by ransomware attack
Lori Brown reports: The City of Dallas is dealing with a ransomware attack that has infected its servers, limiting the delivery of City service. The city says security monitoring tools first spotted the attack on Wednesday morning. Read more at Fox4. Update: It looks like the Royal Ransomware gang is responsible for this one.
Persistent attackers: Eurasia Group believes it has been dealing with the same attackers since 2020
Some attackers are harder to kick out and keep out. From a notification letter to a state attorney general’s office by external counsel for Eurasia Group, a consulting firm in New York: In December 2020, Eurasia Group discovered suspicious activity within its email system. Eurasia Group immediately launched an investigation, with the assistance of third-party…
Brightline continues notifying clients of GoAnywhere incident; count continues to rise (more than 1 million)
Updated May 3: When DataBreaches checked Clop’s leak site today, the listing for Brightline was gone. Whether this means that they paid Clop to get it removed, or if its removal is just temporary remains to be seen. But out of all the health-related Fortra clients this site reported on in April, the Brightline listing…