On September 6, The Physical Medicine & Rehabilitation Center posted a substitute notice on its website about an incident in July that affected patients at their New Jersey and New York locations. The attack by Meow Leaks reportedly resulted in the threat actors accessing some protected health information (PHI) of an undisclosed number of patients….
Category: Commentaries and Analyses
Thousands of Vastaamo leak victims seek higher compensation
YLE reports: Two lawyers representing some victims of the massive Vastaamo psychotherapy centre data breach say their clients are dissatisfied with the compensation amounts announced by the State Treasury. In late August, Treasury service director Tuomo Yliluoma estimated to Yle that Vastaamo’s victims will receive an average of 500–1,500 euros in damages for attempted or aggravated extortion….
Feeld dating app’s security too open-minded as private data swings into public view
Connor Jones reports: Security researchers have revealed a litany of failures in the Feeld dating app that could be abused to access all manner of private user data, including the most sensitive images not intended to be kept or shared. Feeld caters to “open-minded individuals” – those specifically interested in exploring alternative relationship models such…
Wow: Boar’s Head provides a master class in incident response and transparency
How often have you seen DataBreaches heap praise on an entity for its incident response or transparency? Not too often, right? But DataBreaches is super-impressed by how Boar’s Head has responded to a food safety incident. No, this wasn’t any data security breach or privacy data breach, but it was an incident that had harmed…
The Dark Nexus Between Harm Groups and ‘The Com’
Brian Krebs reports: A cyberattack that shut down two of the top casinos in Las Vegas last year quickly became one of the most riveting security stories of 2023: It was the first known case of native English-speaking hackers in the United States and Britain teaming up with ransomware gangs based in Russia. But that…
Deal made with whistleblower after Columbus’ data leak drew global attention, deal still muzzles whistleblower
There’s an update to a disturbing story that involved a Franklin County judge granting the City of Columbus a temporary restraining order against Connor Goodwolf. Goodwolf has been providing information to the media and the public about a ransomware attack on the city and was refuting the city’s claims about the impact of the attack…