Yesterday, Chum1ng0 spotted a forum listing that affects a regional office in the Illinois k-12 education system. DataBreaches reached out to that regional office by email yesterday morning to alert them. Emails were sent to multiple people, including the Superintendent and head of IT. The emails provided them with specific information from the listing. Did…
Category: U.S.
Transparency #FAIL: Why won’t Anthem/Elevance Health answer a simple question about breaches?
A DataBreaches opinion piece. You might think a giant insurer like Anthem, which has experienced at least several breaches over the years — including one of the most significant breaches ever — would understand the importance of transparency by now. Apparently not. On May 24, Anthem (now known as Elevance Health) posted a notice on…
California Department of Corrections and Rehabilitation notifies staff, visitors, and incarcerated individuals of breach
The California Department of Corrections and Rehabilitation (CDCR) issued a breach notification this week. Because the notification mentions COVID-19 testing, at first, DataBreaches thought it was the incident CDCR had disclosed last month, but no, it turns out that that was a different incident. The newly revealed breach affects staff, visitors, and others tested for…
WA: W-2 wage information of Kent city employees ‘inadvertently disclosed’ | Update
Steve Hunter reports: A city of Kent staff member “inadvertently disclosed to (another city) employee a file containing the 2020 W-2 Wage and Tax Statement information for all city employees,” according to an email sent by Chief Administrative Officer Pat Fitzpatrick to city employees. In the Friday, Aug. 19 email, Fitzpatrick said he was writing…
Hacker accesses injured workers’ personal info in cyberattack on North Dakota agency
It’s not often we see a breach report from North Dakota. Forum reports: The North Dakota Workforce Safety & Insurance agency was a victim of a cybersecurity attack on June 28 that involved personal data, according to a statement released by WSI on Friday, Aug. 19. According to the statement: A Workforce Safety & Insurance…
From the “What Could Possibly Go Wrong Department” after it went wrong, Monday edition
In June, many of us first became aware that Facebook was receiving sensitive medical information from hospital websites. Of 33 hospital websites that The Markup tested, 10 of them had trackers (“Meta Pixels”) which sent information to Facebook when a patients clicked a button on the hospital’s site to schedule an a medical appointment. This…