Steve Ragan reports: Researchers at Proofpoint recently discovered a Phishing campaign that originated form select job postings on CareerBuilder. Taking advantage of the notification system the job portal uses, the attacker uploaded malicious attachments instead of résumés, which in turn forced CareerBuilder to act as a delivery vehicle for Phishing emails. The scam is both…
Category: Malware
Phishing attack hits another healthcare system
Partners Healthcare System has become the latest healthcare system to disclose that patient data was compromised by employees falling for phishing attacks: Partners HealthCare System, Inc. and its affiliated institutions and hospitals, including Brigham and Women’s Hospital, Brigham and Women’s Faulkner Hospital, Massachusetts General Hospital,North Shore Medical Center, Partners Continuing Care, and Newton-Wellesley Hospital (“Partners…
IN: Prosecutor: Some Warrick child support files affected by virus
Richard Gootee reports: Warrick County Prosecutor Michael Perry announced that some of the county’s child support files were affected by a computer virus last year, which was before Perry took office. Perry laid blame for an alleged subsequent coverup of the incident at the feet of his predecessor — Jo Ann Krantz, whom Perry beat…
Compass Group USA notifies consumers of NEXTEP-related payment card breach
As noted previously on this site, Point-Of-Sale (POS) vendor NEXTEP confirmed that they were investigating a potential breach after being notified by law enforcement that some of its customer locations had been compromised in a potentially wide-ranging credit card breach. Brian Krebs broke the story, here. Today, Compass Group USA submitted a copy of an April 16th notification…
And then there were four five (Ascension Health entities breached)
Now that I know what I’m looking for, I’m finding more evidence of targeted email attacks affecting members of Ascension Health. For previous reports on this incident, read here and here. On March 16, Sacred Heart Health System in Florida posted this notice on their site about a breach they reported to HHS as affecting…
And then there were three (Ascension Health entities breached)
Now can I say, “I told you so?” When Ascension Health wouldn’t answer my question as to whether there were other members who had also had a phishing incident recently other than the two hospitals I had already reported on, I was even more suspicious. Then this afternoon, I discovered that St. Agnes Health Care,…