The timeline from their notification to consumers tells the sad story: Notice of Data Security Incident We are notifying you of a recent data security incident involving your personal information. This notice explains the incident, steps Xfinity has taken to address it, and guidance on what you can do to protect your personal information. What…
Category: U.S.
If at first you don’t succeed, screw it up again?
In mid-November, DataBreaches reported that AlphV threat actors had added MeridianLink to their leak site. When their victim wouldn’t pay them, AlphV (aka “BlackCat”) filed a complaint with the Securities & Exchange Commission alleging that MeridianLink failed to comply with the SEC’s new cybersecurity rule requiring notification within four days of discovering a material breach….
Welltok databreach affects CHI St. Alexius patients
Elizabeth Shores reports: Patients at CHI St. Alexius are receiving letters from Welltok, Inc., a third-party vendor, about a significant data breach. Welltok said it learned at the end of July about a data leak that had taken place during the summer. Welltok said it notified St. Alexius about the extent of the leak on…
Update: Fred Hutch Cancer Center attack claimed by Hunters International
On December 8, DataBreaches reported that Fred Hutchinson Cancer Center had been the victim of a ransomware attack and that the then-unnamed threat actors were trying to extort patients directly. Today we learned that the threat actors are Hunters International, who listed the incident on their leak site. As of publication, they have not leaked…
Employee files compromised after ransomware attack on Campbell County School District
Matthew Dietz reports: The Campbell County School District announced Thursday that it was recently the target of a ransomware incident that allowed an unauthorized person to gain access to employee files. The school district did not specify when the incident occurred. The district said the incident impacted the availability and functionality of its computer network….
Newfound school district still working to recover data after cyber attack
Thomas P. Caldwell reports: Newfound Area School District is recovering from a Nov. 15 cyber breach, described as a ransomware attack because it locked users out, although the unknown hacker did not make a financial demand. Jason Sgro, a senior partner at the Atom Group, the cyber response company based in Portsmouth working to restore…