The San Francisco Employees’ Retirement System has been notifying people about a breach. From their notification, this explanation of what happened: The Retirement System contracts with vendors to provide SFERS members with on‐ line access to their account information. One of the vendors, 10up Inc., set up a test environment on a separate computer server…
Category: U.S.
University of Utah patients notified after phishing incident compromised employee email accounts
David Wells reports: Some of University of Utah Health’s patients are receiving notice that their private information may have been compromised in a recent email security breach. According to U of U Health, some of its employees’ email accounts were compromised in phishing schemes, resulting in unauthorized access of those accounts between April 6 and…
NetWalker ransomware continues streak of college attacks
Benjamin Freed reports: A form of ransomware known as NetWalker added two more colleges to its list of victims Wednesday by claiming to have stolen files from Columbia College in Chicago and the University of California, San Francisco, according to screenshots posted on a blog maintained by the hackers behind the attacks. Read more on…
Two Data Breaches Hit Kentucky Employees’ Health Plan
Sarah Michels reports: Nearly a thousand members of Kentucky Employees’ Health Plan (KEHP) were victims of a data breach that took place in late April and mid-May, according to a statement released by the Commonwealth of Kentucky Personnel Cabinet on June 2. During the first attack, from April 21 to 27, 971 KEHP members accounts…
“Aeries Software” Breached and Over 150 School Districts Compromised
Bill Toulas reports that more than 150 school district were compromised by the Aeries software breach. I’m not surprised, as I’ve been updating my little list of schools where I had seen breach notifications. You can find that post of mine here.
Duluth schools had some kind of breach…
News reports out of Duluth say that on Wednesday evening, parents were notified about a cyber security breach involving student accounts. The district has disabled student accounts for now, but is trying to restore them by tomorrow, which is the final day of school there. No other details have been provided so far.