March 17 – On January 17, 2017, Estill County Chiropractic (“ECC”) discovered that an unauthorized user installed malicious software on its computer system that encrypted patient files. ECC immediately shut down the system. Although ECC was already taking security precautions, ECC replaced the system and included additional security measures. ECC worked diligently to restore files…
Category: Malware
Urology Austin notifies patients of ransomware attack
A ransomware attack was reported by Urology Austin as affecting 279,663 patients. From their notification letter: On January 22, 2017, Urology Austin was the victim of a ransomware attack that encrypted the data stored on our servers. Within minutes, we were alerted to the attack, our computer network was shut down, and we began an investigation….
Lane Community College notifies health clinic patients of potential breach
Dylan Darling reports: A virus-infected computer at the Lane Community College health clinic may have relayed patient information — names, addresses, Social Security numbers and more — to an unknown third party for more than a year, the college said Friday. LCC said it has sent letters warning 2,500 patients whose information may have been…
Neiman Marcus to settle long-running data breach litigation for $1.6m?
Law360 reports: Neiman Marcus has agreed to pay $1.6 million to resolve a data breach class action in Illinois federal court over a December 2013 cyber intrusion that revealed the credit card data of 350,000 shoppers of the luxury retailer, according to a court document filed Friday. Read more on Law360 if you have a…
Google Points to Another POS Vendor Breach – Krebs
Brian Krebs reports: For the second time in the past nine months, Google has inadvertently but nonetheless correctly helped to identify the source of a large credit card breach — by assigning a “This site may be hacked” warning beneath the search results for the Web site of a victimized merchant. A little over a…
Missouri sheriff’s office leaked audio of police informants and victims after ransomware attack
Dell Cameron reports: A data breach at a Missouri law enforcement agency in January left thousands of sensitive records exposed online, including jail incident reports, arrest records, and more. Security researchers who discovered the breach at the Warren County Sheriff’s Department say the leaked backup files—numbering in the hundreds of gigabytes—also include multiple audio recordings…