U.S. – Page 38 – DataBreaches.Net

Albany ENT & Allergy Services settles state charges stemming from two patient data breaches; agrees to spend $2.25M on security program

Posted on October 30, 2024 by Dissent

In April 2023, DataBreaches reported two ransomware groups had each listed Albany ENT & Allergy Services (AENT) on their respective leak sites. But one month later, when AENT sent notifications to regulators and 224,486 affected employees and patients, its notification letter made no mention of any ransomware attack, any encryption of files, any ransom demands,…

School ransomware attacks are on the rise. What can districts do?

Posted on October 28, 2024 by Dissent

Kara Arundel reports: … Ransomware — where threat actors use malware to block access to network systems and then demand payment to unlock it — has been ballooning in the K-12 sector over the last seven years, according to the K12 Security Information eXchange. Known as K12 SIX, the national nonprofit helps protect schools from…

Texas county says 47,000 had SSNs, medical treatment info leaked during May cyberattack

Posted on October 28, 2024 by Dissent

Jonathan Greig reports: A cyberattack in May gave hackers access to the personal, financial and medical information of more than 47,000 residents living in Wichita County, Texas. County officials filed breach notification documents with regulators in Texas as well as Maine and posted a notice on their website warning residents that the incident involved everything from names, Social Security…

Since June, two groups claim to have attacked The Eye Clinic Surgicenter. What do we know?

Posted on October 28, 2024 by Dissent

One cyberattack is distressing enough. But has The Eye Clinic Surgicenter been attacked by two different groups this year? Silence is not golden if patient data has already been leaked. Last week, Meow Leaks added The Eye Clinic Surgicenter in Montana to their leak site. Meow’s site indicates that is offering 59 GB of files…

Carolina Arthritis hit by ThreeAm ransomware attack

Posted on October 25, 2024 by Dissent

On Thursday morning, ThreeAM added Carolina Arthritis to its leak site. Some ransomware groups add a listing, post some claims and a few screencaps, and then give the entity a deadline to pay up, or they leak a bit of data and then give the entity a final deadline. ThreeAM doesn’t seem to work that…

OnePoint Patient Care notifies almost 800,000 patients of August ransomware attack

Posted on October 25, 2024 by Dissent

On September 15, INC Ransom added OnePoint Patient Care to its leak site. The threat actors claimed to have encrypted the hospice dispensing pharmacy and pharmacy benefits management service’s files. It wasn’t long after that INC leaked all of the data. The Arizona-based provider notified HHS of the incident on October 14, reporting that 795,916…