On June 28, DataBreaches received a message from an unrecognized sender. The subject was: “Breach of Marriott hotels! Very Important!” DataBreaches’ first thought was, “Seriously? Is this yet another breach involving Marriott or are some kids just trying to leak old data?” As it turned out, this was, in fact, a new breach. But how…
Category: U.S.
Cyberattack suspends Cedar Rapids summer school activities
The Gazette reports: A cyberattack discovered over the holiday weekend has caused the Cedar Rapids Community School District to suspend summer programming until July 11, the district said. Its announcement did not describe the nature of the attack or say which systems it targeted. Read more at The Gazette.
Update on Plainedge School District ransomware attack
On June 15, DataBreaches reported that BlackCat threat actors had added Plainedge School District in New York to their dedicated leak site. At the time, BlackCat (aka ALPHV) only offered a few files as proof but warned more data would be leaked if they did not hear from the district. The threat actors subsequently dumped…
Professional Finance Company, Inc. is providing breach notifications to patients of 657 covered entities
So this one could be another big one: Professional Finance Company, Inc. (“PFC”), an accounts receivable management company that provides assistance to various organizations (including healthcare providers), announced today that it is notifying individuals whose information may have been involved in a recent network security incident. On February 26, 2022, PFC detected and stopped a sophisticated…
Alameda Health System’s second breach went undetected by investigators of first breach?
On June 24, Alameda Health System in California submitted a notification to the California Attorney General’s Office. The notification concerned a breach of an employee’s email account breach that began on April 30, 2020. The breach wasn’t discovered until February 23, 2022, and the account was locked down after that in March. According to Alameda’s…
UPDATE: Michigan Avenue Immediate Care in Chicago submits notification concerning 2021 cyberattack
On May 18, DataBreaches.net broke the story about a cyberattack on Michigan Avenue Immediate Care in Chicago (MAIC). The threat actors who had attacked Unified Government of Wyandotte County and Kansas City in April claimed responsibility for the attack. Despite multiple inquiries sent to MAIC, no response was ever received, but the threat actors provided…