Add Phelps Care Regional Medical Center (“Phelps Health“) to any list of updates to MCG Health clients impacted by the MCG breach. Phelps’ notification indicates that it was alerted to the breach by MCG on April 22. Update: Phelps reported that 12,602 patients were impacted. As reported previously by DataBreaches, MCG Health uses March 25, 2022…
Category: Hack
Police Linked to Hacking Campaign to Frame Indian Activists
Andy Greenberg reports: Police forces around the world have increasingly used hacking tools to identify and track protesters, expose political dissidents’ secrets, and turn activists’ computers and phones into inescapable eavesdropping bugs. Now, new clues in a case in India connect law enforcement to a hacking campaign that used those tools to go an appalling step…
California Man Known As “icloudripper4you” Sentenced To Nine Years In Federal Prison For Stealing Nude Photographs And Images From Apple iCloud Accounts
Tampa, Florida – U.S. District Judge Kathryn Kimball Mizelle has sentenced Hao Kuo Chi (41, La Puente, California) to nine years in federal prison for conspiracy and computer fraud. Chi had pleaded guilty on October 15, 2021. According to court documents, Chi operated for years on Anon-IB, a now defunct website. Anon-IB was notorious for…
Sg: PDPC issues monetary penalty in the matter of the Vhive cyberattack
One of the many hacks this site reported on in 2021 was the attack on Vhive in Singapore by threat actors calling themselves ALTDOS. The attack resulted in what the threat actors claimed was hundreds of thousands of the furniture retailers’ customers having their personal information leaked when the firm refused to pay the attackers’…
Central Florida Inpatient Medicine notifies 197,733 patients after employee email account compromised last year
Central Florida Inpatient Medicine (CFIM) is notifying 197,733 patients whose protected health information (PHI) was in an employee’s email account that was accessed by an unauthorized individual between August 21, 2021 and September 17, 2021. CFIM does not indicate when they first discovered that there had been a breach or how they first discovered it. …
Confluence servers hacked to deploy AvosLocker, Cerber2021 ransomware
Sergiu Gatlan reports: Ransomware gangs are now targeting a recently patched and actively exploited remote code execution (RCE) vulnerability affecting Atlassian Confluence Server and Data Center instances for initial access to corporate networks. If successfully exploited, this OGNL injection vulnerability (CVE-2022-26134) enables unauthenticated attackers to take over unpatched servers remotely by creating new admin accounts…