Came across these today while researching something else, so I thought I would just list them here for those who track k-12 breaches. Coffeyville School District in Kansas had a data security incident in July of 2020 that they detected in August of 2020. Their notification letter of February 2021 indicates that names and SSN…
Category: Phishing
Facebook takes down accounts for seven “cyber-mercenary” firms
Catalin Cimpanu reports: Meta (formerly Facebook) said today that it suspended accounts on its Facebook and Instagram platforms operated by seven companies that provide surveillance and cyber-mercenary services. Meta said these companies targeted users with links to phishing sites and malware in order to collect login credentials and infect them with malware. Read more at…
NJ: Cancer Care Providers Will Adopt New Security Measures and Pay $425,000 to Settle Investigation into Two Data Breaches
CONSENT ORDER NEWARK – Acting Attorney General Andrew J. Bruck today announced that the Division of Consumer Affairs has reached a settlement with three New Jersey-based providers of cancer care that the State alleges failed to adequately safeguard patient data, exposing the personal and protected health information of 105,200 consumers, including 80,333 New Jersey residents. Under…
IL: Evanston Township High School Defrauded Of $48,570 In Hack That Exposed 1,139 Identities
Jonah Meadows reports: Evanston Township High School officials got scammed out of more than $48,000 during a monthslong data breach that also exposed the personal information of more than 1,100 Illinois residents, Patch has learned. The fraudulent payment was reported to Evanston police, and the data breach was disclosed to the Illinois Attorney General’s Office,…
At least 3 Quad-Cities municipalities have fallen victim to cyber attacks
Sarah Watson reports: … In the Quad-Cities, at least three local governments paid out more than $100,000 to scammers. In all three cases, the criminals emailed local government officials pretending to be legitimate vendors the cities worked with. Rock Island County paid $115,000. LeClaire wired more than $222,000 in a similar case. Moline paid roughly…
US Defense Contractor Discloses Data Breach
Dark Reading reports: Electronic Warfare Associates (EWA), a US defense contractor, has confirmed a data breach in which attackers exfiltrated files containing personal information. The breach began with a phishing attack that had “some limited impact” on EWA email accounts, officials report in a notification letter. Their investigation determined an attacker broke into EWA email accounts…