Another listing I stumbled across while browsing what’s for sale on the darknet offered emails from what the seller claimed are .edu, dadeschools.net, and k12.wi.us, among other sources. The vendor, “dnu2k,” was asking $16.94 and claimed to have “Only 1 in stock!” I contacted the vendor to try to obtain more information, and (s)he replied that…
Category: U.S.
Veterans Administration responds to Freedom of Information request; releases breach reports
So what did we miss because the Veterans Administration stopped posting their monthly breach reports to Congress on their web site? DataBreaches.net filed a Freedom of Information request on June 7, and the VA has responded by providing all of the requested monthly reports for the period May, 2016 – June 7, 2017. As an…
Atlanta neurological clinic notifies patients of ransomware attack AND an older hack
In the process of investigating a ransomware incident, Peachtree Neurological Clinic discovered an earlier hack going back to February 2016. They posted the following notice on their web site: Peachtree Neurological Clinic, P.C. (“PNC”) of Atlanta, Georgia has advised its patients of a privacy event that may have compromised certain personal information. The events are…
How about the truth, the WHOLE truth, and….. ?
So Harvest Bible Chapel d/b/a Walk in the Word Ministries notified donors of a vendor breach that they learned about on May 30, 2017. We determined that the unknown individual may have accessed payment information, including name, address, telephone number, credit/debit card, or checking account information depending on the form of payment you used on our…
Ivinson Memorial Hospital notifies patients of FastHealth breach
Another FastHealth client is disclosing the vendor’s malware breach to its patients. Eve Newman reports: More than 500 Ivinson Memorial Hospital patients should receive notices in coming days that their billing and health information might have been compromised because of a security breach involving a hospital website vendor. FastHealth, which provides website services to IMH,…
University of Iowa Health Care notifies 5,292 patients about files exposed online for two years
Public Notice – Patient Information Improperly Disclosed at University of Iowa Health Care On April 29, 2017, University of Iowa Health Care (UIHC) discovered that, in May 2015, a limited set of data containing protected health information of approximately 5,300 patients at University of Iowa Hospitals & Clinics was inadvertently saved in unencrypted files that…