CUNA reports: NCUA issued a Letter to Credit Unions (23-CU-07) on the cyber incident notification requirements that go into effect Sept. 1. Credit unions will be required to notify the NCUA no later than 72 hours after the credit union reasonably believes it has experienced a reportable cyber incident or has received a notification from…
Category: U.S.
NYC Finance Department Sent Every Employee Their Colleagues’ Personal Info
Yoav Gonen reports: The city Department of Finance inadvertently emailed a roster of all of its staff — containing home addresses, cell numbers and personal email addresses — to the agency’s roughly 1,800 employees in a botched test of its emergency notification system, THE CITY has learned. The snafu was accompanied by automated calls to…
TN: Cleveland City Schools face ransomware attack
Courtney Goins reports: Cleveland City Schools faced a ransomware attack this week, but it only affected a small number of devices. The school system said they became aware of the issue on Tuesday, August 15. An issue they say is affecting many other school districts as well. […] Sensitive information is secure offsite, and officials…
134K Massachusetts residents impacted by ‘global security incident’
Stacey Scott reports: Massachusetts health officials are warning over 134,000 individuals who are currently or were previously enrolled in certain state programs that their personal information has been involved in a recent third-party data security breach. The breach is part of a worldwide incident that involves a file-transfer software program called “MOVEit.” UMass Chan Medical…
Prince George’s County Public Schools responding to cyberattack
Fox5 in D.C. reports Prince George’s County Public Schools revealed Monday its network experienced a cyber attack. The August 14 notice on the district’s website reads: August 14, 2023 – Update on PGCPS Network Outage Prince George’s County Public Schools (PGCPS) experienced a cyber attack on the system’s network that was detected early Monday morning, Aug….
Hackers may have stolen SSNs, other info from Coastal Orthopedics
The Bradenton Herald reports: Sensitive information — including Social Security numbers, birthdays and addresses — for current and former patients at Coastal Orthopedics may have been compromised after an attacker hacked into the company’s system. The company detected suspicious activity on its network around June 11, prompting an investigation, according to a press release. Although…