In August 2023, Prince George’s County Public Schools disclosed a cyberattack. At the time, they reported that “an estimated 4,500 user accounts out of 180,000 were impacted, primarily staff accounts. The school system is still assessing the full scope of this incident, but as of this time, the main business and student information systems –…
Category: U.S.
Ukrainian man pleads guilty in cyberattack that temporarily disrupted major Vermont hospital
AP reports: A Ukrainian man has pleaded guilty to involvement in two separate malware schemes including a cyberattack at the University of Vermont Medical Center in 2020 that temporarily shut down some of its vital services and cost it tens of millions of dollars, according to the U.S. Department of Justice. Vyacheslav Igorevich Penchukov, also…
Update on INTEGRIS Health data breach: incident response criticized by patients
In December, INTEGRIS Health disclosed a cyberattack in November in which threat actors contacted patients directly to extort them when INTEGRIS wouldn’t pay their demands. DataBreaches subsequently reported additional details. On February 6, INTEGRIS updated its breach notice. The updated website notice incorporates the kind of language that advocates for transparency and data protection may…
PA: Washington County pays $350,000 ransom after cyberattack
Chris Hoffman reports: The Washington County Board of Commissioners formally voted on Thursday on handling the recent cyberattack. Some have questioned the transparency of the process. The questions about transparency have been because of secret and emergency meetings. According to the solicitor, some of that was because of the deadlines set up by the cybercriminals….
Quest Diagnostics pays $5M after mixing patient medical data with hazardous waste
Jessica Lyons reports: Quest Diagnostics has agreed to pay almost $5 million to settle allegations it illegally dumped protected health information – and hazardous waste – at its facilities across California. This sum won’t hurt at all for the corporation, one of the largest clinical medical lab networks in the US. In all, Quest is…
U.S. Internet Leaked Years of Internal, Customer Emails
Brian Krebs reports: The Minnesota-based Internet provider U.S. Internet Corp. has a business unit called Securence, which specializes in providing filtered, secure email services to businesses, educational institutions and government agencies worldwide. But until it was notified last week, U.S. Internet was publishing more than a decade’s worth of its internal email — and that of thousands of…