In November, DataBreaches.net published a commentary arguing that patients need to be notified sooner of ransomware dumps even if HIPAA would seem to allow up to 60 days. As a companion to that piece, this site looked at 30 claimed ransomware attacks on U.S. healthcare entities that had been revealed on dedicated leak sites by…
Category: Of Note
Attacks targeting healthcare organizations spike globally as COVID-19 cases rise again– Researchers
Check Point writes: At the end of October 2020, we reported that hospitals and healthcare organizations had been targeted by a rising wave of ransomware attacks, with the majority of attacks using the infamous Ryuk ransomware. This followed a Joint Cybersecurity Advisory issued by the CISA, FBI and HHS, which warned of an increased and imminent cybercrime threat to US hospitals…
In: 10 crore Indians’ card data selling on Dark Web: Researcher
Helpful note: 10 crore = 100 million. Economic Times Tech reports: Independent cybersecurity researcher Rajshekhar Rajaharia claimed on Sunday that data of nearly 10 crore credit and debit card holders in the country is being sold for an undisclosed amount on the Dark Web. According to Rajaharia, the massive data dump on the Dark Web…
Apex Laboratory confirms ransomware attack; only recently discovered data theft
DataBreaches.net recently reported that Apex Laboratory Inc. had apparently been attacked by DoppelPaymer ransomware threat actors. Apex was added to their leak site on December 15. As proof of claims, the threat actors uploaded approximately 10,000 files containing protected health information of patients (PHI) and personally identifiable information of employees (PII). The 10,000 estimate is…
Ticketmaster Pays $10 Million Criminal Fine for Intrusions into Competitor’s Computer Systems
Ticketmaster Used Passwords Unlawfully Retained by a Former Employee of a Competitor to Access Computer Systems in Scheme to “Choke Off” the Victim’s Business Earlier today in federal court in Brooklyn, Ticketmaster L.L.C. (Ticketmaster or the Company) agreed to pay a $10 million fine to resolve charges that it repeatedly accessed without authorization the computer…
Data Breach Litigation Without a Data Breach? Not So Fast Walmart Says…
Lydia de la Torre and Raisa Dyadkina of Squire Patton Boggs write: The Lavarious Gardiner v. Walmart Inc. et al. case is anything but typical. As a re-cap, back in July 2020, plaintiff filed a class action complaint against Walmart alleging that Walmart suffered a data breach which they never disclosed. As evidence of the breach,…