The following notification was first published on July 18 as a legal notice: 00110404 PUBLISH 07/18/22 – 09/02/22 Notice of Data Breach On or about February 26, 2022, the Louisiana Public Facilities Authority (LPFA) was the target of a ransomware attack by unknown persons. Our investigation indicates the attack may have gone on over a…
Category: U.S.
BHG Behavioral Health Group recently notified patients of a December 2021 breach
If you know to scroll down on BHG Behavioral Health Group‘s website to their footer, you will see a small link to an undated data security incident notice. That undated notice does not reveal when Behavioral Health Group first discovered the data security incident or how they first discovered it. The notice does state, however,…
Ransomware team hits Disability Help Group
One of the recent listings on a well-known ransomware leak site names a Florida law firm as their victim but they link to disabilityhelpgroup.com. That site, which offers what they describe as advocacy services for individuals seeking help in securing Social Security disability benefits or veterans’ disability benefits, does not display the law firm’s name…
Roundup: Four more breaches in the healthcare sector: Healthback Holdings, Zenith American Solutions, Bronx Accountable Healthcare Network, and Centerstone
On June 1, Healthback Holdings, LLC in Oklahoma discovered that they had been subject to a hacking incident that began in October 2021. “A limited number” of employee accounts were compromised. On July 29, Healthback notified HHS that 21,114 patients were affected. Their notice says that names, health insurance information, Social Security numbers, and clinical…
Twitter confirms January breach, urges pseudonymous accounts to not add email or phone number
Jonathan Greig reports: Twitter officially confirmed that a January breach led to the leak of information connected to 5.4 million accounts. Two weeks ago, a hacker on Breach Forums offered email addresses and phone numbers connected to the accounts, which they said ranged from “celebrities, companies, randoms, OGs, etc.” […] For those who have pseudonymous Twitter accounts,…
No Injury = No Article III Standing in Data Breach Class Action
Amy Brown Doolittle of Squire Patton Boggs writes: As we have discussed here at CPW, one of the biggest challenges facing a plaintiff in a data breach class action is to establish an injury from the alleged data breach. Earlier this week, in David De Midicis v. Ally Bank & Ally Fin., Inc., 2022 U.S. Dist. LEXIS…