Another entity affected by the Summit Reinsurance ransomware attack in March, 2016 is first notifying individuals of the incident. See this report about PrimeWest Health. The insurer notified HHS of the incident on December 29, reporting that 2,441 members were affected. The reinsurer’s breach was discovered on August 8, 2016, and yet affected entities are…
Category: U.S.
Mortgage loan processor stole dozens of identities
Francesca Gattuso reports: A northwest suburban mortgage loan processor stole “dozens” of victims identities to open bank accounts, credit cards and loans, authorities said. Karolina M. Klambatseas, 34, worked for various mortgage companies while committing the theft dating back to May 2015, Wheaton police announced Monday. Read more on Chicago Sun-Times.
NYS audit finds Holland Patent Central School District not adequately protecting PPSI
Another audit from the NYS Comptroller is worthy of note here. This one audited the Holland Patent Central School District for access to their student information system (SIS). The District operates four schools with approximately 1,500 students and 300 employees. This audit covered the period of July 1, 2015 – July 31, 2016. According to the state, the…
Expert Hacks Internal DoD Network via Army Website
Eduard Kovacs reports: A security researcher who took part in the Hack the Army bug bounty program managed to gain access to an internal Department of Defense (DoD) network from a public-facing Army recruitment website. [….] Roughly 118 of the reports have been classified as unique and actionable, and participants have been awarded a total…
MN: District 833, police investigate after student accesses private employee data
Scott Wente reports: South Washington County Schools is investigating after a student gained access to electronic personnel data. The district notified all of its roughly 3,250 employees last week that it discovered the data breach and was investigating with the help of law enforcement and a computer forensic firm. While it does not appear files…
NYPD tech worker accused of selling officers’ personal info
Sarah Trefethen reports: An IT worker with access to NYPD personnel files released sensitive information of thousands of officers and tried to cash in on his position by selling data on individual members of the Finest, according to prosecutors. Idahosa Ighodaro, 37, an information technology administrator employed by the NYPD, was hit with charges of…