This notice from their web site just showed up in my searches: Catawba Valley Medical Center (CVMC) is committed to protecting the security and confidentiality of our patients’ information. Regrettably, this notice concerns an incident that may have involved some of that information. On August 13, 2018, CVMC determined an unauthorized person may have gained…
Category: Phishing
State officials grill Minnesota DHS over two breaches
KSTP reports: On Wednesday, state leaders addressed two recent data breaches at the Department of Human Services. […] “Could you please try and help us connect why there was such a failure here of four months before folks were notified of the compromising situation of their private data?” asked Sen. Mary Kiffmeyer, (R) Big Lake….
Henderson ISD falls victim to fraud in a business email compromise scheme
David Chenault reports: Financial scammers stole more than $600,000 from Henderson ISD through a sophisticated, yet common, fraud scheme. According to HISD’s financial records, on Sept. 26, the district initiated a $609,615.24 direct electronic bank payment (known as an Automated Clearing House or ACH) to RPR Construction Company Inc. The firm is overseeing the construction…
BEC-as-a-service offers hacked business accounts for as little as $150
Graham Cluley reports: New research has revealed that business email compromise is being made easier for any criminal to add to their arsenal. Researchers at threat intelligence firm Digital Shadows report that companies don’t even need to be hacked to spill their address books and email archives. Careless backups of email archives on publicly-accessible rsync,…
Aspire Health hacked by phishing scheme, lost ‘protected health information’
Brett Kelman reports: Aspire Health, a large Nashville health care company that offers in-home treatment in 25 states, was hacked earlier this month and lost at least some patient information to an unknown cyberattacker. The hack, disclosed for the first time in federal court records filed on Tuesday, occurred after a phishing attack gained access to…
Guardant Health to Notify HHS & 1,100 individuals of phishing attack that involved PHI
Omar Ford reports: Liquid Biopsy specialist, Guardant Health faced a cybersecurity attack about two months ago, according to an SEC filing for the firm’s initial public offering. The Redwood City, CA-based company said that private information from about 1,100 individuals was compromised. “In July 2018, we experienced a security incident involving a phishing attack, and…