Catalin Cimpanu reports: A mysterious hacker group has targeted, and most likely infected, Croatian government employees between February and April this year. Attackers, which are suspected to be a state-sponsored unit, have targeted victims using a spear-phishing campaign that mimicked delivery notifications from the Croatian postal or other retail services. Read more on ZDNet.
Category: Phishing
How Hackers Emptied Church Coffers with a Simple Phishing Scam
Sam Bocetta reports: The approach was simple, a combination email scam and social engineering phone call. All it took was a call to St. Ambrose Catholic Parish, claiming to be Marous Brothers Construction, a company working on a church renovation project for the past two months. But the phone call wasn’t from Marous Brothers Construction….
Australian Catholic University suffers data breach impacting the personal details of its staff
Cyware reports: The Australian Catholic University has suffered a fresh wave of cyberattack that resulted in the compromise of personal details of its staff. This is the second significant security breach that has occurred in a month at one of the country’s tertiary institutions. Read more on Cyware.
Ca: Nova Scotia Health Authority suffers data breach, nearly 3,000 patients possibly affected
Alexander Quon reports: The Nova Scotia Health Authority (NSHA) is in the process of notifying nearly 3,000 people about a potential privacy breach involving personal health information, the organization announced on Monday. The health authority says the breach was detected by its IT team on May 13, 2019, after an employee’s email account was compromised…
Aetna first notifying 238 Virginia employees of BenefitMall breach that they’ve known about since December, 2018?
In January, 2019, we learned about a breach at Centerstone Insurance and Financial Services, Inc. d/b/a BenefitMall, a business associate. The breach reportedly affected more than 111,000 insurance members/covered employees of the vendor’s clients. HIPAA Journal covered the incident. Yesterday, Aetna issued a public notice related to the incident. Surprisingly, their notice discloses that by…
Health Quest phishing incident in 2018 results in notification to patients, but why such a long delay?
Today’s Poughkeepsie Journal has a news story about a phishing incident that appears to have been discovered in July, 2018 that affected an unspecified number of Health Quest patients. From the available information, it sounds like Health Quest first discovered email attachments in January, 2019, and then it took them until April 2, 2019 to…