Someone asked me today about the lack of W-2 phishing reports or W-2 incidents that we’ve seen so far this year. I responded that I hadn’t really had time to research W-2 attacks yet, but a reader, “DLOW,” has now kindly submitted a news story by Mary Richards of KSL in Utah. The kinds of…
Category: U.S.
AZ Plastic Surgery Center refuses thedarkoverlord’s “handsome” proposition, notifies patients and HHS of hack
Yet another healthcare provider has revealed that they were hacked by thedarkoverlord (TDO). Dr. Robert Spies, a plastic surgeon in Scottsdale, Arizona, has notified HHS and his patients of the hackers’ attempt to extort the practice. Although he does not name the hackers responsible in a notice on his web site, Dr. Spies explains: On…
NE: CHI Health officials say virus introduced to health system’s network by third-party vendor’s infected device
So let’s be honest: how often do you monitor your third-party vendors or business associates to ensure that the devices they may connect to your network are free from malware? Julie Anderson reports: CHI Health has caught a virus, but it’s not the kind the health system is used to battling. Dr. Cliff Robertson, CHI…
Changing numeric ID in url allowed students to view other Stanford students’ admission files, sensitive personal data
Julia Ingram and Hannah Knowles report: Before this week, Stanford students could view the Common Applications and high school transcripts of other students if they first requested to view their own admission documents under the Family Educational Rights and Privacy Act (FERPA). Accessible documents contained sensitive personal information including, for some students, Social Security numbers….
IL: School District computer system; most data recovered, superintendent says
Kennedy Nolen reports: Foreign hackers targeted the Mount Zion schools computer system in an attack that resulted in 19 days’ worth of grades being wiped out across the district. Data was not removed from the system, but the hackers encrypted several servers, making them unusable, Superintendent Travis Roundcount said in an emailed response to questions from the…
FL: AdventHealth notifying more than 42,000 patients impacted by hack of one of their facilities
On January 25, ClickOrlando reported: A hack at a pulmonary practice in Tavares might have exposed sensitive patient information, including Social Security numbers and medical histories. Officials from AdventHealth said in a news release on Friday that an unauthorized third party gained access to systems at AdventHealth Medical Group Pulmonary & Sleep Medicine at Tavares, formerly…