OK, here’s a W-2 phishing attack from 2016 that I never covered on this site but has apparently resulted in a class action lawsuit settlement. Christina Davis reports: TIMCO Aviation Services has agreed to pay more than $300,000 to settle a class action lawsuit alleging the company violated Class Members’ privacy rights by compromising tax data…
Category: Phishing
Hackers stole his campaign cash, Sacramento lawmaker says
Taryn Luna reports on a hack and phish that may leave you wondering whether this was a politically motivated attack or just a garden variety attack. Luna reports the the victim is Sen. Richard Pan, D-Sacramento, whose re-election campaign account was robbed in a multi-step scheme that began with a hack of his email account…
A North Carolina Federal Court Allows A Treble Damages Claim In Employee Data-Breach Lawsuit
Alex Pearce of Ellis & Winters LLP writes: As we have explored before, a common scam known as “W-2 phishing” can put companies in the crosshairs for data-breach lawsuits brought by their employees. In honor of Tax Day, today’s post examines an interesting recent decision from a North Carolina federal court in one of these…
UnityPoint Health notifying patients of phishing attack
On February 15, 2018, UnityPoint Health discovered our email system was the victim of a phishing attack that compromised some employee email accounts. UnityPoint Health promptly took action to secure the impacted email accounts, changed passwords, and engaged external cybersecurity professionals to analyze what information might have been contained in the impacted accounts. After a…
NC: Diagnostic Radiology & Imaging notifies 800 patients of phishing incident in 2017
From their notice: Diagnostic Radiology & Imaging, LLC (or “DRI”) operates multiple imaging facilities in Greensboro, North Carolina under the names Greensboro Imaging and The Breast Center of Greensboro. On January 31, 2018, DRI became aware of an impermissible disclosure of limited health information about approximately 800 patients. An investigation revealed that on November 11,…
CareFirst phishing attack could affect 6,800 members
Morgan Eichensehr reports: CareFirst BlueCross BlueShield, Maryland’s largest health insurer, has been the victim of a “phishing” email attack that potentially affected 6,800 of its members. This breach comes about three years after CareFirst weathered another cyberattack that affected more than 1 million of its members. The Baltimore company has 75 percent market share in the…