Cathy Jett reports: Hackers phishing for sensitive information faked an email from a regional organization to break into the Fredericksburg school system’s electronic mail and file system last month. The April 24 intrusion was caught the following day, but not before hackers accessed 14 school employees’ emails and one school employee’s files, according to a…
Category: Phishing
TIMCO Aviation Services Settles Class Action Lawsuit by Employees Over 2016 W-2 Breach
OK, here’s a W-2 phishing attack from 2016 that I never covered on this site but has apparently resulted in a class action lawsuit settlement. Christina Davis reports: TIMCO Aviation Services has agreed to pay more than $300,000 to settle a class action lawsuit alleging the company violated Class Members’ privacy rights by compromising tax data…
Hackers stole his campaign cash, Sacramento lawmaker says
Taryn Luna reports on a hack and phish that may leave you wondering whether this was a politically motivated attack or just a garden variety attack. Luna reports the the victim is Sen. Richard Pan, D-Sacramento, whose re-election campaign account was robbed in a multi-step scheme that began with a hack of his email account…
A North Carolina Federal Court Allows A Treble Damages Claim In Employee Data-Breach Lawsuit
Alex Pearce of Ellis & Winters LLP writes: As we have explored before, a common scam known as “W-2 phishing” can put companies in the crosshairs for data-breach lawsuits brought by their employees. In honor of Tax Day, today’s post examines an interesting recent decision from a North Carolina federal court in one of these…
UnityPoint Health notifying patients of phishing attack
On February 15, 2018, UnityPoint Health discovered our email system was the victim of a phishing attack that compromised some employee email accounts. UnityPoint Health promptly took action to secure the impacted email accounts, changed passwords, and engaged external cybersecurity professionals to analyze what information might have been contained in the impacted accounts. After a…
NC: Diagnostic Radiology & Imaging notifies 800 patients of phishing incident in 2017
From their notice: Diagnostic Radiology & Imaging, LLC (or “DRI”) operates multiple imaging facilities in Greensboro, North Carolina under the names Greensboro Imaging and The Breast Center of Greensboro. On January 31, 2018, DRI became aware of an impermissible disclosure of limited health information about approximately 800 patients. An investigation revealed that on November 11,…