Phishing – Page 79 – DataBreaches.Net

Pittsburg employees notified after their W-2 data stolen in phishing scheme

Posted on February 6, 2018 by Dissent

CORRECTION: I picked this up incorrectly as Pittsburgh in PA. A kind reader pointed out my error. This was Pittsburg in Kansas! Corrected Post: The City of Pittsburg hasn’t disclosed how many former and current employees had their W-2 data stolen in a phishing scam on January 30, but I’m betting it’s more than a…

Forrest General Hospital patients notified after business associate breach involving protected health information

Posted on February 1, 2018 by Dissent

HORNE LLP (“HORNE”) is providing notice of an incident that occurred at HORNE and may affect the security of protected health information of certain Forrest General Hospital patients. HORNE has access to these individuals’ personal health information as part of services HORNE provides for Forrest General Hospital with certain Medicaid reimbursement services. While HORNE is…

Harris County tightens security after almost losing $900K in phishing attack

Posted on January 27, 2018 by Dissent

Mihir Zaveri reports: On Sept. 21, not three weeks after Houston was ravaged by Hurricane Harvey, the Harris County auditor’s office received an email from someone named Fiona Chambers who presented herself as an accountant with D&W Contractors, Inc. The contractor was repairing a Harvey-damaged parking lot, cleaning up debris and building a road for…

The 2018 W-2 Phishing/BEC Victims List

Posted on January 27, 2018 by Dissent

As this site has done in 2016 and 2017, DataBreaches.net will maintain a list of entities that disclose that they have become victims of a W-2 phishing or business email compromise (BEC) attack. For 2016, we compiled 175 incidents (although some of them didn’t become public knowledge until 2017), and for 2017, we had 204 incidents…

Monticello Central School District notifying almost 2,600 of phishing attack last year

Posted on January 22, 2018 by Dissent

When I saw that Monticello Central School District in New York had submitted a breach notification to the Vermont Attorney General’s Office and it mentioned phishing, I thought we might have our very first W-2 phishing incident of 2018. But no, it seems that the school district is reporting a phishing incident that they believe…

Lebanese Government Hackers Hit Thousands of Victims With Incredibly Simple Campaign

Posted on January 18, 2018 by Dissent

Lorenzo Francesco-Bicchierai reports: Hackers allegedly working for the government of Lebanon stole hundreds of gigabytes from thousands of victims all over the world, and they did it using phishing, relatively simple custom-made malware with no fancy zero-day exploits, and using recycled infrastructure, according to a new report. Security researchers from digital rights organization Electronic Frontier…