From the FAQ (both the FAQ and HTML version have occasional errors and label certain dates 2023 when they were 2022): 1. What happened? On December 23, 2022, the California Secretary of State (SOS) was notified by a researcher that the records they were provided to view contained records not older than 75 years. Pursuant…
Category: Other
Data Exfiltration Trends in Healthcare
From the Office of Information Security / HHS and the Health Sector Cybersecurity Coordination Center: Data Exfiltration Trends in Healthcare March 9, 2023
Cerebral Inc. notifying 3,179,835 patients of tracking technologies breach
Cerebral Inc. has notified HHS of a breach affecting 3,179,835 individuals. They are the latest entity to report a breach due to exposing personal or protected health information data through tracking analytics. According to April Strauss, Esq.: On March 6, 2023, Cerebral began sending emails to users of its platforms, admitting that it uses pixels…
Medicare under attack: Healthcare data breaches increase fraud risks
Melissa D. Berry reports: Stealing Medicare beneficiary identification numbers has become the latest goal for cybercriminals who see this data as even more valuable than stolen credit cards. A South Florida man pled guilty in federal court in late-January to “conspiring to buy and sell more than 2.6 million Medicare beneficiary identification numbers” and other…
Texas waited two months to start informing 3,000 people that crooks copied their driver’s licenses. DPS explains why.
Jasper Scherer reports: After discovering in December that an organized crime group had obtained thousands of replacement Texas driver licenses, state public safety officials waited more than two months to publicly reveal the breach and start notifying those swept up in the operation. The criminal effort, disclosed to lawmakers Monday by Texas Department of Public Safety Director…
Social engineering attack on Boston labor union results in $6.4 million loss
AP reports: A cyberattack on a Boston-based labor union’s health fund resulted in the loss of $6.4 million, but it does not appear that the personal information of members was stolen or compromised, union officials said. Federal and local law enforcement agencies were notified of the attack at Pipefitters Local 537 that was discovered Feb….