Sean Adams reports: York County officials have released a warning to residents that a “data privacy event” might have put their information at risk. County officials shared that “in early 2025, the county was notified of a possible data security incident” involving a vendor working with them. An employee of that vendor had been hired…
Category: U.S.
Hack of Opexus Was at Root of Massive Federal Data Breach
This breach may not turn out to be the biggest insider breach of 2025, but it may well turn out to be one of the most impactful. Jason Leopold reports: A software company that handles sensitive data for nearly every US federal agency was the victim of a cyber breach earlier this year due to…
HHS Office for Civil Rights Settles HIPAA Cybersecurity Investigation with Vision Upright MRI
On March 10, 2025, Vision Upright MRI notified HHS of a breach affecting 23,031 patients, but there was nothing posted on their website to explain the breach. A press release issued by HHS today provides some explanation for the incident that involved the medical images of 21,778 patients. From their release: OCR initiated a compliance…
RIBridges firewall worked. But forensic report says hundreds of alarms went unnoticed by Deloitte.
Alexander Castro reports: A cybercriminal group breached the state’s public benefits portal last July, lingered inside the network’s backend for five months, and triggered hundreds of firewall alerts when it transferred gigabytes of Rhode Islanders’ data to its own servers in November. But RIBridges system vendor and manager Deloitte, a multinational firm valued at $67.2 billion last…
Cyberattacks on Long Island Schools Highlight Growing Threat
I’d called it an “ongoing threat,” but …. Maggie MacAlpine reports: In a concerning development, over 20 school districts across Long Island have fallen victim to cyberattacks, compromising the personal data of more than 10,000 students. According to state education records, 28 incidents were reported in 2024 alone, affecting districts such as Great Neck, Smithtown,…
Department of Justice says Berkeley Research Group data breach may have exposed information on diocesan sex abuse survivors
Daniel Payne reports: The U.S. Department of Justice says a recent data breach of a California consulting firm exposed data of Catholic clergy abuse survivors in nearly a dozen bankruptcy lawsuits. In a May 6 letter addressed to attorneys at law firm Proskauer Rose LLP, the Justice Department’s Nan Eitel, the associate general counsel for Chapter…