Marcia Greenwood reports a follow-up to a data leak initially reported in June 2021: Wegmans Food Markets has been hit with a $400,000 penalty for exposing the personal information of more than 3 million customers chainwide, including more than 830,000 New Yorkers, the New York State Attorney General’s Office announced Thursday. In a statement, the…
Category: U.S.
State unemployment, jobs services down around the country after cyberattack at GSI
Kevin Collier has more on the Geographic Solutions cyberattack previously noted on DataBreaches that is impacting state job services agencies around the country: A cyberattack has hit a company that handles unemployment claims and job placement for state governments, disrupting online services across the country. The departments of labor and related agencies have been affected…
Health Information Management vendor breach results in theft of patient info
Unauthorized access to a New Jersey Health Information Management (HIM) vendor’s portal has resulted in some patients’ protected health information being acquired and exfiltrated. Earlier today, DataBreaches was contacted by someone known to this site as “DarkFox.” DataBreaches has reported on DarkFox in the past without identifying them, but is identifying them this time by…
AL: Jack Hughston Memorial Hospital has been the victim of a recent cyber attack
Chuck Williams reports: Jack Hughston Memorial Hospital has been the victim of a recent cyber attack, the hospital CEO Mark Baker has confirmed to News 3. [..] The hospital is continuing to see patients and the attack has not interrupted patient care. Read more at WRBL. via @Chum1ng0
Former Uber security chief will have to face wire fraud charges in hack coverup
Uber’s former Chief Security Officer Joseph Sullivan will have to face wire fraud charges over his alleged role in covering up a 2016 hack that exposed the personal information of millions of Uber passengers and drivers. The breach and its aftermath continue to reverberate after it was disclosed that although Uber knew it had been…
When the data leak is not from the victim you named, Wednesday edition
Ever since threat actor groups started naming and leaking victims who do not pay their demands, groups have occasionally misidentified their victims. Today’s example is courtesy of Avos Locker, who added the Canadian Mental Health Association to their leak site in April. Inspection of the data in the leak, however, quickly raised questions as to…