Marney Carmichael reports on an incident in Ontario, Canada: Halton region says a privacy breach at Allendale Long-Term Care Home in Milton exposed personal electronic health records from 2005 to this summer. A cybersecurity incident in June of this year involving third-party software led to unauthorized access of residents’ personal data, including names, health details…
Category: Hack
US Court Finds NSO Liable For Hacking Of WhatsApp Using Pegasus Malware
Gursimran Kaur Bakshi reports: In a summary judgment, Judge Phyllis Hamilton of the US District Court in Oakland, Northern District of California has found Israeli-mercenary’s surveillance firm NSO Group Technologies (also known as Q Cyber Technologies) liable for the hacking of Meta’s Whatsapp through its state-of-the-art military-grade malware Pegasus. The Court has found that NSO violated the Computer Fraud…
ConnectOnCall breach exposes health data of over 910,000 patients
Sergiu Gatlan reports: Healthcare software as a service (SaaS) company Phreesia is notifying over 910,000 people that their personal and health data was exposed in a May breach of its subsidiary ConnectOnCall, acquired in October 2023. ConnectOnCall is a telehealth platform and after-hours on-call answering service with automated patient call tracking for healthcare providers. “On…
Granite School District breach worse than the district has revealed — former employee (1)
Some former employees of Granite School District in Utah are reporting frustration and anger with the district’s incident response to an attack by the Rhysida group. One has written up what he found when he examined the publicly leaked data. On September 20, 2024, Granite became aware of suspicious activity on its network. An investigation…
Nebraska AG becomes first state to sue Change Healthcare over massive data breach
Aaron Sanderford reports: Nebraska on Monday became the first state to sue Tennessee-based Change Healthcare over the company’s massive data breach that cost at least 575,000 Nebraskans their personal information and medical records. … The breach was blamed on a low-level employee who had his or her login credentials hacked. Nebraska Attorney General Mike Hilgers…
Clop ransomware claims responsibility for Cleo data theft attacks
Lawrence Abrams reports: The Clop ransomware gang has confirmed to BleepingComputer that they are behind the recent Cleo data-theft attacks, utilizing zero-day exploits to breach corporate networks and steal data. Cleo is the developer of the managed file transfer platforms Cleo Harmony, VLTrader, and LexiCom, which companies use to securely exchange files between their business partners…