Brian Krebs reports: On July 21, 2024, denizens of the cybercrime community Breachforums released more than 4 terabytes of data they claimed was stolen from nationalpublicdata.com, a Florida-based company that collects data on consumers and processes background checks. The breach tracking service HaveIBeenPwned.com and the cybercrime-focused Twitter account vx-underground both concluded the leak is the same information first put up for…
Category: U.S.
Three State Attorneys General Secure $4.5 Million from Enzo Biotech for Failing to Protect Health Data of 2.4 Million Patients
NEW YORK – New York Attorney General Letitia James and the attorneys general of Connecticut and New Jersey today secured $4.5 million from Enzo Biochem, Inc. (Enzo) for failing to adequately safeguard the personal and private health information of its patients. Enzo is a biotechnology company that offers patients diagnostic testing at its laboratories in New York,…
U.S. Army Intelligence Analyst Pleads Guilty to Charges of Conspiracy to Obtain and Disclose National Defense Information, Export Control Violations and Bribery
Today’s reminder of the insider threat is yesterday’s press release from the Department of Justice: Korbein Schultz, a U.S. Army soldier and intelligence analyst, pleaded guilty today to all charges against him in the indictment returned by a federal grand jury in March 2024 charging him with conspiracy to obtain and disclose national defense information,…
Kootenai Health sends notifications for 464,088 people after February attack
More than five months after discovering an attack that disrupted access to some of its IT systems, Kootenai Health is sending notification letters to 464,088 patients, employees, and employees’ dependents. Kootenai Health describes itself as providing a comprehensive range of medical services to patients in north Idaho, eastern Washington, Montana and the Inland Northwest at…
Surgery Center of Mid Florida notifies patients of February ransomware attack
On or about February 21, Surgery Center of Mid Florida (“SCOMF”) experienced a ransomware attack. No group has publicly claimed responsibility for the attack, but it originated with an attack on their now-former IT vendor. The attack on the unnamed vendor gave the attackers access to SCOMF. In August, SCOMF notified regulators, explaining, in part:…
Gramercy Surgery Center hacked; data leaked on dark web (1)
Gramercy Surgery Center (“Gramercy”) is an ambulatory surgery center with locations in Manhattan and Queens, New York. On or about July 15, the threat actor(s) known as Everest Team added Gramercy to its leak site. Everest claimed to have acquired more than 460 GB of files but offered only images of two old files as…