On August 17, 2023, SouthCoast Medical Group (Southcoast Health) in Georgia notified HHS of a breach and posted a preliminary substitute notice on its website. At the time, they reported to HHS that 501 patients were affected, a marker for when an entity doesn’t yet know the actual number but knows it will be more…
Category: U.S.
Cyber Attack May Have Exposed Alabama Student, Teacher Data
Rebecca Griesbach reports: The Alabama State Department of Education experienced a data breach in June that may have compromised some student and employee data, officials announced Wednesday. On June 17, information system staff interrupted and stopped an attack on the department’s computer system before hackers could fully access the system or lock it, according to…
Florida health department data captured in cyberattack, hackers claim
Lawrence Mower, Romy Ellenbogen, and Christopher O’Donnell report: A hacker group claims it has breached the Florida Department of Health and gained access to a large amount of potentially sensitive data on Floridians. The RansomHub ransomware group said in a post on the dark web that it will release 100 gigabytes of department data unless the…
ShinyHunters Leak What They Claim Are 33M Twilio Authy Phone Numbers, Neiman Marcus and Truist Bank Data
Waqas reports: ShinyHunters hackers have taken responsibility for three high-profile data breaches involving Neiman Marcus, Truist Bank, and Twilio Authy, compromising personal details of millions of users and tens of thousands of employees. The infamous ShinyHunters hacking group, known for their recent Ticketmaster data breach, has struck again with a series of new attacks. This time,…
Two recent NYS audits of k-12 districts’ information technology security
The NYS Comptroller’s Office recently released more audits of school districts. Here are two of them: Whitney Point Central School District – Information Technology (IT) (Broome County) Audit Period July 1, 2021 – February 24, 2023. We extended our audit period to August 31, 2023 to review backup restoration results and November 16, 2023 to…
Louisiana Special School District ransomware attack possibly compromised workers’ personal information
Allison Bruhl reports: Louisiana Special School District employees were notified of a cyber attack on Friday, June 28, a little more than a month after it was discovered. According to the superintendent on July 3, the Louisiana State Police’s Cyber Crimes Division was contacted after an Akira ransomware breach was found on May 24. “Our…