Years ago, I had hoped more states would require breach notifications to central offices and that states would then share those reports with the public, much as New Hampshire had done. But things haven’t really become more transparent. Maryland and California remain positive examples of transparency, but New Hampshire’s site, while still available, has lost…
Category: Phishing
CA: Adventist Health Notifies 2,653 Patients After Phishing Incident
B. J. Hansen reports on a phishing incident that has resulted in Adventist Health Sonora notifying patients. According to the hospital, the incident was discovered on September 30, and an investigation was launched. On October 14, they discovered that the compromised associate’s account contained protected health information. The hospital’s notification states: Information that may have…
Texas school district loses $2.3 million from phishing scam
KSAT reports: Manor Independent School District, just east of Austin, is out of $2.3 million from a phishing scam. Investigators say the phishing email was sent to multiple people at the school district and it was a single person that responded. The money was sent through three separate transactions. Read more on KSAT.
Native American Rehabilitation Association of the Northwest reports Emotet attack
On January 3, the Native American Rehabilitation Association of the Northwest, Inc. (NARA NW) in Portland, Oregon announced that it experienced a cybersecurity incident November 4-5, 2019. The attack was described as a malware incident with Emotet malware injected when some employees fell for a phishing attack on November 4. The incident was recognized quickly…
SG: Personal data of Ministry of Defence and Singapore Armed Forces were potentially affected by unrelated attacks on two vendors
Clara Chong reports that two unrelated incidents involving government vendors had put the data of Ministry of Defence and Singapore Armed Forces staff at risk. 2,400 Mindef and SAF leaked after ST Logistics phished: The data included the full names and NRIC numbers, and a combination of contact numbers, e-mail or residential addresses, Mindef said…
Researcher Releases Data on 100,000 Phishing Attempts to Teach You How to Not Get Hacked
Lorenzo Franceschi-Bicchierai reports: A security researcher who specializes in tracking government hacking attempts published 25GB of data on 100,000 phishing attacks on Monday. […] Claudio Guarnieri, who works at Amnesty International and has been tracking targeted attacks against dissidents and activists for almost a decade, published the dataset to help other researchers track hackers, and…