Brett Kelman reports an update to a phishing incident in September: A large Nashville-based healthcare company that was hacked earlier this year said Tuesday an internal investigation has revealed the stolen emails were intercepted before they were ever opened by the cyberattacker. Aspire Health, which offers in-home treatment in 25 states, has also abandoned its legal hunt for the…
Category: Phishing
North Korea-linked Hackers Target Academic Institutions
Ionut Arghire reports: A threat group possibly originating from North Korea has been targeting academic institutions since at least May of this year, NetScout’s security researchers reveal. The attackers use spear-phishing emails that link to a website where a lure document attempts to trick users into installing a malicious Google Chrome extension. Following initial compromise,…
Hackers steal $800,000 from Cape Cod Community College
Laura Krantz reports: Hackers stole more than $800,000 from Cape Cod Community College last week when they infiltrated the school’s bank accounts, the school notified its employees Friday. Several computers in the school’s Nickerson Administration Building were hacked by a phishing scheme that used malware to obtain access to the school’s accounts, according to an…
Cancer Treatment Centers of America Notifies Almost 42,000 Patients of Possible Access to Their Protected Health Information
CORRECTION: I don’t know how I did it, but instead of typing 42,000, I kept typing 92,000 when I originally wrote this one up. The number of patients affected was 41,948, as it said at the bottom of the post. My apologies to CTCA. Another phishing incident where an employee’s email account was storing a…
900+ residents’ information compromised in Town of Christiansburg data security breach
WDBJ in Virginia reports: The town of Christiansburg is offering free credit monitoring to more than 900 people after their information was compromised in a phishing scam. The scam targeted email accounts of three town employees which contained personally identifiable information from some members of the public, the town said in a news release. There…
Georgia Spine and Orthopaedics of Atlanta notifies 7,012 patients after phishing attack
Another day, another successful phishing attack in the healthcare sector. From the web site of Georgia Spine and Orthopaedics of Atlanta: Georgia Spine and Orthopaedics of Atlanta (“GSO”) was a recent victim of an email “phishing” scam that resulted in unauthorized access to an employee’s email account. “Phishing” involves scammers sending emails that look legitimate,…