If you think about “supply chain attack” and “HVAC,” you will probably immediately think of the headline-making Target breach of 2013. But that wasn’t the only breach via a third-party HVAC vendor. Just this month, several hospitals in Boston may have narrowly escaped potentially serious breaches when their HVAC vendor was hacked and the threat…
Category: Of Note
Hive ransomware attacks Memorial Health System, steals patient data
Yesterday, news broke that Memorial Health system in Ohio had been hit with a ransomware attack and that surgeries were being delayed. Today Ionut Ilascu reports more details, including that the attack appears to involve the Hive ransomware threat actors: BleepingComputer has seen evidence that the attackers have stolen databases with information belonging to 200,000…
JP Morgan Chase Bank Admitted Leaking Sensitive Data of its Customers
Ax Sharma reports: Chase Bank has admitted to the presence of a technical bug on its online banking website and app that allowed accidental leakage of customer banking information to other customers. […] The issue is believed to have lasted between May 24th and July 14th this year, and impacted both online banking and Chase Mobile app customers who…
Dozens Of Texas School Districts Hammered By Cyberattacks, I-Team Finds
Brian New reports: A rising number of cyberattacks on Texas schools is exposing a troubling vulnerability. A CBS 11 I-Team investigation found in the past two years at least 67 school districts in Texas have suffered a cybersecurity breach. The incidents range from teachers accidentally emailing student personal information out to the whole class to…
Trial blocked by police data loss; murder suspect released
AP reports a follow-up to a data loss incident reported earlier this month: A murder suspect was released from jail Monday after his trial was postponed when Dallas police revealed they had lost a massive amount of criminal data. Read more on AP.
Pearson to pay $1M fine for misleading investors about 2018 data breach
Carly Page reports: Pearson, a London-based publishing and education giant that provides software to schools and universities has agreed to pay $1 million to settle charges that it misled investors about a 2018 data breach resulting in the theft of millions of student records. The U.S. Securities and Exchange Commission announced the settlement on Monday after the…