Jasper Scherer reports: After discovering in December that an organized crime group had obtained thousands of replacement Texas driver licenses, state public safety officials waited more than two months to publicly reveal the breach and start notifying those swept up in the operation. The criminal effort, disclosed to lawmakers Monday by Texas Department of Public Safety Director…
Category: U.S.
Supreme Court Hears Healthcare Identity Theft Case
Marianne Kolbasuk McGee reports: Justices on the U.S. Supreme Court seem ready to restrict federal prosecutors’ use of a federal law criminalizing identity theft after hearing a case challenging its application in a Medicaid fraud case. Traditional identity theft involving appropriation of personal information for criminal ends, such as obtaining fraudulent prescriptions or submitting fake…
Another Texas school district with a data breach? (UPDATED)
LockBit has added White Settlement Independent School District in Texas to their leak site, with a proof pack that suggests that the threat actors were able to access — and may have exfiltrated — a lot of files. The listing was added yesterday. There is no notice on WSISD’s website that DataBreaches could find…
U.S. Marshals Service suffers ransomware breach that compromises sensitive information, senior law enforcement officials say
Andrew Blankstein, Michael Kosnar, Jonathan Dienst, and Tom Winter report: The U.S. Marshals Service suffered a security breach over a week ago that compromises sensitive information, multiple senior U.S. law enforcement officials said Monday. In a statement Monday, U.S. Marshals Service spokesperson Drew Wade acknowledged the breach, telling NBC News: “The affected system contains law enforcement sensitive information, including returns from…
LastPass says employee’s home computer was hacked and corporate vault taken
Dan Goodin reports: Already smarting from a breach that put partially encrypted login data into a threat actor’s hands, LastPass on Monday said that the same attacker hacked an employee’s home computer and obtained a decrypted vault available to only a handful of company developers. Although an initial intrusion into LastPass ended on August 12,…
Social engineering attack on Boston labor union results in $6.4 million loss
AP reports: A cyberattack on a Boston-based labor union’s health fund resulted in the loss of $6.4 million, but it does not appear that the personal information of members was stolen or compromised, union officials said. Federal and local law enforcement agencies were notified of the attack at Pipefitters Local 537 that was discovered Feb….