John Hall reports: Attorneys representing a potentially large group of residents and employees of nursing home behemoth Avamere Holdings announced they have filed a class action suit accusing the long-term care provider of failing to protect its residents and staff from a massive cyberattack. The operator faces the class-action lawsuit over a data breach believed to have affected more…
Category: Commentaries and Analyses
A huge phishing campaign has targeted over 130 companies, affecting Twilio and Signal
Jess Weatherbed reports: Over 130 organizations, including Twilio, DoorDash, and Cloudflare, have been potentially compromised by hackers as part of a months-long phishing campaign nicknamed “0ktapus” by security researchers. Login credentials belonging to nearly 10,000 individuals were stolen by attackers who imitated the popular single sign-on service Okta, according to a report from cybersecurity outfit Group-IB. Read more…
‘Crisis’ for Utah prisoners as medical records glitch scrambles prescription info
We don’t see many breach reports involving lost devices these days, but records can also be lost due to other causes, such as cyberattacks that encrypt or corrupt files or attacks that delete records where there is no backup. In this case, records were lost during a move to a new facility and transition to…
NHS cyberattack causing ‘total chaos’ in hospitals could take a year to recover
Rebecca Thomas reports: It could take more than a year for hospitals to recover patient record systems following the recent NHS cyberattack, The Independent has learned. Hospitals impacted are likely to need two weeks to recover for every day the situation goes unresolved, according to NHS sources. While initial attention following the ransomware attack on Advantage software was its impact on…
Ca: Conservatives call for release of report on massive Afghan immigration data breach
Evan Dyer reports: The Conservative Party has written to Privacy Commissioner Philippe Dufresne asking him to speed up his investigation of a federal government data breach that exposed the identities of hundreds of Afghans seeking Canada’s help to escape from the Taliban in October 2021. Dufresne announced on November 15 of last year that his…
New ‘Donut Leaks’ extortion gang linked to recent ransomware attacks
Lawrence Abrams reports: A new data extortion group named ‘Donut Leaks’ is linked to recent cyberattacks, including those on Greek natural gas company DESFA, UK architectural firm Sheppard Robson, and multinational construction company Sando. […] Strangely, the data for these victims have now appeared on the data leak site for a previously unknown extortion gang…