As I commented this week: protected health information or medical information can be found in so many breaches involving entities that may not sound “medical” to you. Today, this site is posting two such notifications. Here’s the second one. LAS VEGAS, Sept. 24, 2021 /PRNewswire/ — Golden Entertainment, Inc. (“Golden”) is notifying individuals of an incident that…
Category: Business Sector
Major European call center provider goes down in ransomware attack; not negotiating with Conti
Catalin Cimpanu reports: GSS, the Spanish and Latin America division of Covisian, one of Europe’s largest customer care and call center providers, has suffered a debilitating ransomware attack that froze a large part of its IT systems and crippled call centers across its Spanish-speaking customerbase. Call centers and automated customer support phone services for companies…
Epik hack reveals prominent, Trump-supporting websites under subpoena investigation
Mikael Thalen reports: Data from the Epik hack leak reveals subpoenas and preservation requests directed to the company for information about some of its customers, apparently issued in the wake of Jan. 6. Data leaked online from the hack of web hosting company Epik appears to reveal domains of interest to investigations or other court proceedings. Some of…
Reports of ePHI breaches are everywhere, but not always were you might look
There are a number of journalists or sites that monitor news and legal notices for disclosures of breaches involving protected health information (PHI). And it’s tempting, when you see that the entity is a business, to just skip on by. But don’t. If a business has a health plan for employees, then they may be…
In: Teen helps IRCTC fix bug that could expose passenger’s private information
DNA reports: A 17-year-old student in a private school in Chennai’s Tambaram has helped the Indian Railway Catering and Tourism Corporation (IRCTC) fix a bug in its online ticketing platform, which could have exposed millions of passengers and their private information. Ranganathan said that the critical Insecure Object Direct References (IODR) vulnerability on the website…
MN: Crystal Valley Computer Systems Infected By Ransomware Attack
Southern Minnesota News reports: Mankato-based Crystal Valley says a ransomware attack has infected their computer systems. The attack “severely interrupted” the daily operations, according to a company press release. Read more on SMN. The Crystal Valley Cooperative is a farm supply and grain marketing cooperative that serves Southern Minnesota and Northern Iowa, so this may…