The Federal Trade Commission is taking action against the online alcohol marketplace Drizly and its CEO James Cory Rellas over allegations that the company’s security failures led to a data breach exposing the personal information of about 2.5 million consumers. Drizly and Rellas were alerted to security problems two years prior to the breach yet…
Category: U.S.
Lawsuit against Labette Health dismissed
A Kansas health center has succeeded in getting a potential class action lawsuit against it dismissed for lack of standing. DataBreaches previously reported that Labette Health had disclosed a breach that occurred in October 2021. Now Bloomberg Law reports that plaintiffs’ claims that Labette violated state consumer protection law failed to demonstrate that they had…
Ransomware attack on Indianapolis Housing Agency has landlords, tenants concerned
A ransomware attack on the Indianapolis Housing Agency that was disclosed earlier this month continues to impact landlords and tenants. Logan Gay reports: Section 8 housing landlords like Bahrishum Gebregziabher are still waiting for the Indianapolis Housing Agency (IHA) to pay them this month. A recent ransomware attack has landlords not only worried about their income but…
Federal and state authorities investigate a data breach at Philadelphia-area OB/GYN practice
Wendy Ruderman reports: Federal and state authorities are looking into allegations that a Main Line Women’s Healthcare employee used a personal cellphone to capture confidential information from medical charts, potentially affecting more than 800 patients at the OB/GYN practice, which has offices in King of Prussia, Malvern, Plymouth Meeting and Bryn Mawr. Read more at…
CISA Alert: Daixin Team
[Comment: I’ve been waiting for this since I first suspected that Daixin Team might be responsible for the CommonSpirit breach. And although it has not been confirmed by anyone, I still suspect them of that one. — Dissent] Alert (AA22-294A) #StopRansomware: Daixin Team Download the PDF version of this report: pdf, 591 KB Technical Details Note:…
Sonic Settles Data Breach Negligence Case
David Herman reports: Judge James Gwin has approved a class-action settlement between Sonic Corporation and a number of financial institutions. Sonic has agreed to pay $5.73 million to settle claims that their negligence led to a 2017 data breach, which compromised customers’ payment information. Court documents recount that in 2017, Sonic suffered a data breach…