David Gilbert reports: Right-wing social network Parler was taken offline in the early hours of Monday morning, but not before a hacker found a way to download all data posted by users — including messages, images, videos, and users’ location data — shared during last week’s attack on the Capitol. The data taken from Parler…
Category: Of Note
Leon Medical Centers issues statement about ransomware attack
Leon Medical Centers (LMC) in Florida has issued a press release about the ransomware attack it experienced, and that DataBreaches.net has reported previously. In our most recent report, we noted that Conti threat actors had dumped protected health information for numerous patients, while claiming that they still had more files from Leon that they would dump….
Australian Digital Health Agency sees ‘inconsequential’ My Health Record data breach notices eroding trust
Ry Crozier reports: The Australian Digital Health Agency, overseer of the My Health Record, has expressed concern at the number and type of “potential” data breaches it is being forced to disclose. In a submission to the Privacy Act review [pdf], the agency (ADHA) asks for changes to the My Health Records Act under which…
Tasmania Police called in after ambulance patient details published online
Emily Baker reports: The private details of every Tasmanian who has called an ambulance since November last year have been published online by a third party in a list still updating each time paramedics are dispatched. The breach of Ambulance Tasmania’s paging system has been described as “horrific” by the Health and Community Services Union,…
Joint Statement by the Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), the Office of the Director of National Intelligence (ODNI), and the National Security Agency (NSA)
January 5 2021 — On behalf of President Trump, the National Security Council staff has stood up a task force construct known as the Cyber Unified Coordination Group (UCG), composed of the FBI, CISA, and ODNI with support from NSA, to coordinate the investigation and remediation of this significant cyber incident involving federal government networks….
“Without Undue Delay, Part 1:” Update on earlier ransomware cases
In November, DataBreaches.net published a commentary arguing that patients need to be notified sooner of ransomware dumps even if HIPAA would seem to allow up to 60 days. As a companion to that piece, this site looked at 30 claimed ransomware attacks on U.S. healthcare entities that had been revealed on dedicated leak sites by…