Kasey Bubnash reports: Administrators and tech staff at Lucia Mar Unified School District are cleaning up after confidential employee information was accidentally shared in an email that was sent out to some district staff. At about 1:43 p.m. on Oct. 9, an email regarding open enrollment insurance—and including a file containing sensitive employee information—was sent to…
Category: U.S.
Montgomery County Public Schools forces password reset after Naviance hacked
Update: It was a Maryland student who did it. Brad Shear forwarded a notice he received yesterday concerning a breach impacting students of the Montgomery County Public School District. The cover email, from Luana Zimmerman of college career service Naviance began: Due to a recent data security incident in Naviance that affected one of our…
Equifax data breach FAQ: What happened, who was affected, what was the impact?
We spent a good amount of time in the cybersecurity forum today talking about the Equifax breach. Here’s a summary of some of their key failures, reported by Josh Fruhlinger and based on A U.S. General Accounting Office’s report, and an in-depth analysis from Bloomberg Businessweek. Here are just two of the findings, as reported by Fruhlinger:…
TX: Hunt Memorial Hospital District notifies additional patients about May 2018 breach
Brad Kellar of the Herald-Banner reports: The Hunt Memorial Hospital District released an update regarding a criminal cyber attack which was discovered against the district earlier this year, warning more of the district’s patients may have been impacted. […] According to the release, the cyber attack occurred in May 2018 “during which hackers gained access…
Philly health department website exposed names of thousands of people with hepatitis
Nathaniel Lash reports: A public-data tool built by the Philadelphia Department of Public Health to track the prevalence of hepatitis infections left individuals’ health records accessible, compromising the names, addresses, Social Security numbers, and intimate health records of thousands of people receiving medical care in Philadelphia. The department learned of the breach Friday when an…
Monterey Health Center in Oregon, Central Valley Regional Center in California both announce patient data breaches
On August 12, 2019, Monterey Health Center in Oregon became aware that they had suffered a ransomware attack. According to a press release issued yesterday, they were able to restore patient data, and were able to rule out any data exfiltration, but were not able to rule out access to the patient data. The types…