On April 21, the Los Angeles County Department of Mental Health disclosed that it had suffered a data breach in a phishing incident. Unauthorized access occurred between October 19 to October 21, 2021. On April 20, LACDMH uploaded a template of its notification letter to the California Attorney General’s Office. That template indicated that the…
Category: Government Sector
MD: Worcester Co. Addresses Government Email Breach
Mark Fowser reports: Worcester County has discovered a breach of the county government email account which contained limited personal information belonging to about 3,000 government and board of education employee and retiree accounts. Cybersecurity professionals discovered the breach while conducting a forensic investigation into a phishing incident that occurred between November 10th and November 20th,…
Purported Elgin County data posted online by ransomware group: cyber threat expert
Matthew Trevithick reports: The cybersecurity incident that has left Elgin County’s website and email system down since the start of the month may have been the result of a ransomware attack involving a notorious Russia-based ransomware syndicate, Global News has learned. A cyber threat expert says data purporting to belong to the county was posted to the website of the ransomware group…
Data Breach Disrupts UK Army Recruitment
Sarah Coble reports: The British Army’s online recruitment portal has been offline for more than a month following a data breach. Officials shut the computerized enrollment system down in the middle of March as a precaution after the personal data of more than 100 army recruits was found being offered for sale on the dark…
Iran says it thwarted largescale cyberattack on country’s infrastructure
The Jerusalem Post reports: The Iranian “AFTA” presidential strategic management center thwarted a widespread cyber attack on the country’s infrastructure in recent days, according to Iranian state TV IRIB. According to AFTA, the cyberattackers planned to exploit a security gap in one of the softwares most widely used by infrastructure organizations in Iran. The center…
Scott County, Iowa discloses data security incident
Seen on the county’s website, dated April 22, 2022: Notice of Data Privacy Event Scott County, Iowa (“Scott County”) is providing notice of a data privacy event. To date, we have no evidence of actual or attempted misuse of information as a result of this incident. In an abundance of caution, we are notifying potentially…