On August 15, 2016, Wheeler & Egger, CPAs, LLP discovered a data security incident involving their firm and some of their clients whose 2015 tax returns were on Extension. After thorough investigation, they have discovered that the perpetrator(s) hacked into their system, and between August 3rd and 9th 2016, fraudulently filed 45 client tax returns. Letters were mailed to…
Category: Malware
UPDATE: 5,000 Marin Medical Practices Concepts patient records lost during recovery from ransomware attack
In August, I noted a ransomware attack on Marin Medical Practices Concepts (MMPC), a business associate providing billing and EMR services to many physicians. The ransomware prevented the physicians from accessing patient records for more than 10 days, and Marin decided to pay an undisclosed amount of ransom. In an August 4 statement, however, they…
NJ Spine Center saw no other option but to pay ransom
Oof. This notification from the New Jersey Spine Center, sent to patients on September 22, describes a real disaster where not only essential patient files and credit card information were locked up, but their most recent backup was too. No wonder they paid the ransom. On July 27, 2016, our computer systems were attacked by a malware…
Hackers attack Royal Cornwall Hospital at Treliske and hold bosses to ransom over stolen information
LynBarton reports: Cyber criminals have made “multiple” attacks on Cornwall’s main hospital in the past year with repeated attempts to hold health bosses to ransom by stealing sensitive information. According to a Freedom of Information (FoI) request, the IT system of the Royal Cornwall Hospitals Trust (RCHT) was once infected ransom-ware, a type of malicious software…
MarsJoke Ransomware Targets the Government and K-12 Educational Sector
Catalin Cimpanu reports: Crooks are targeting government and educational institutions with a new ransomware family named MarsJoke (or JokeFromMars), discovered in late August, but which came to life this week through a massive email spam wave. The group behind this ransomware is using emails disguised as air travel confirmation notifications, which also contain a link…
Notice of Data Incident at Stallcup & Associates, CPAs
On July 11, 2016, Stallcup & Associates, CPAs was subject to a ransomware virus and some of our network files were encrypted without our permission. Fortunately, the virus was detected within an hour and immediately stopped. Although there is no evidence that any files were viewed or exfiltrated, nor that such activities were intended, we are notifying…