QRS On August 26, healthcare technology services company QRS, Inc. (“QRS”) discovered that an attacker had compromised a patient portal and exfiltrated some files from that client’s server. The compromise had been detected within three days of the attack. The information the threat actor may have accessed or acquired may have included, depending on the…
Category: Hack
Black Shadow hackers leak medical records of 290,000 Israeli patients
The Times of Israel reports: In its second major leak in a day, the Black Shadow hacking group on Tuesday night uploaded what it said was the full database of personal information from Israel’s Machon Mor medical institute, including medical records of some 290,000 patients. The directory reportedly includes information on patients’ blood tests, treatments,…
Jukin Media hacked and data dumped; company claims a password reset is required due to a “security upgrade”
On Wednesday, Jukin Media posted a notice on its site requiring users to reset their passwords. They said the reset was due to a “security upgrade.” By now, whenever I see announcements about what seems to be an unplanned or unscheduled reset, I suspect a breach, so I reached out to Jukin Media’s Twitter team…
Security Service of Ukraine identified FSB hackers who carried out more than 5,000 cyberattacks on state bodies of Ukraine
From an SSU press release: SSU cyber specialists have identified hackers from the notorious ARMAGEDON group, which carried out more than 5,000 cyber attacks on state bodies and objects of critical infrastructure of Ukraine. They were officers of the “Crimean” FSB, as well as traitors who sided with the enemy during the occupation of the…
Hacker who posted ‘pwned’ on MIAA website says they hoped to help expose security flaws
Tom Westerholm reports: A hacker who goes by the screen names “netsaosa” and “g0retrance” got into the Massachusetts Interscholastic Athletic Association (MIAA) website on Monday and posted “pwned,” briefly derailing the release of the MIAA’s official statewide brackets for state tournament games. Reporters noted the delay before MassLive.com’s Meredith Perri realized the site was compromised. A pop-up in…
If you need to notify abuse survivors of a data breach, is it acceptable to take more than one year to notify them?
Urban Resource Institute in New York City provides shelter and services to victims of domestic abuse, homeless people, and individuals with developmental disabilities. On May 20, 2020, they were the victim of an attack on employees’ email accounts. Unusual network activity was first noticed on July 23, 2020, but it wasn’t until October, 2020 that…