Graham Cluley writes: The US Government has issued an alert to organisations about the threat posed by the BlackMatter ransomware group. The government’s Cybersecurity & Infrastructure Security Agency (better known as CISA) issued the advisory earlier this week, following a series of BlackMatter ransomware attacks since July 2021 targeting US critical infrastructure, including two American organisations working…
Category: U.S.
Indiana orthopedics practice becomes a victim of a ransomware attack
I hate to see medical entities become victims of ransomware attacks, but if they do, then I’m glad to see them promptly alert patients to any problems. Central Indiana Orthopedics is a positive example of prompt alerting. The following notice appears on their web site: IMPORTANT ANNOUNCEMENT: We regret to inform you that Central Indiana…
MA: Nock Middle School student faces identity theft charges
I looked at this news article because it struck me as unusual that a middle school student would be charged with identity theft, but after reading the story, it struck me that this may be more properly understood as a case of online harassment. But then I realized that impersonation accounts can be used for…
Members of at least two health insurance plans notified of ransomware attack on PracticeMax (updated)
Updated March 7, 2022: PracticeMax reported this incident to the Maine Attorney General’s Office as impacting a total of 165,698 patients. Their updated notice explains that the breach began on April 17, 2021, and they became aware of technical problems on May 1, 2021. The notice also reads, in part: On October 19, 2021, while…
Kemper Proposes $17.6M Settlement of Data Breach Claims
Insurance Journal reports and update on litigation stemming from a breach previously noted on this site. Kemper Insurance has proposed to settle a class action stemming from two data breaches in a deal valued at about $17.6 million. The dual breaches could have compromised the personal information of an estimated 6.1 million customers and employees….
NJ: University Hospital recently learned of long-running insider-wrongdoing breach
The following notice by University Hospital in New Jersey is the kind of notification no healthcare entity wants to have to publish. It involves a rogue employee misusing their access to obtain information on patients that may ultimately be provided to personal injury lawyers or those trying to recruit clients or patients who have suffered…