Okay, so two exemplars doesn’t prove any kind of trend, but I’m glad to see some entities now taking steps to reduce how much PHI is stored in employee email accounts. Here are two recent incidents, both reported to HHS in December: Healthcare Administrative Partners (HAP) is a Pennsylvania-based business associate under HIPAA. On December…
Category: Subcontractor
SG: Personal data of Ministry of Defence and Singapore Armed Forces were potentially affected by unrelated attacks on two vendors
Clara Chong reports that two unrelated incidents involving government vendors had put the data of Ministry of Defence and Singapore Armed Forces staff at risk. 2,400 Mindef and SAF leaked after ST Logistics phished: The data included the full names and NRIC numbers, and a combination of contact numbers, e-mail or residential addresses, Mindef said…
UK: Ex-employee of ICT contractor jailed for Jet2 cyber attacks
A disgruntled ex-employee has been jailed after he admitted carrying out cyber attacks against Jet2 which took down their computer systems for more than 12 hours. NCA investigators proved that 27-year-old Scott Burns from Morley, Leeds, illegally accessed a domain operated by Dart Group and their subsidiary, Jet2, on two separate occasions in January 2018….
AU: Nine more charges for NSW data breach accused
Steven Trask reports: The Sydney IT contractor allegedly responsible for a massive data breach that cost an ASX-listed property evaluation company more than $8 million is now facing additional charges. Stephen Grant allegedly accessed and published more than 170,000 data sets including names, addresses, contact numbers, property valuations and driver’s licences between September 2017 and…
Marietta utility customer data found on dark web after Click2Gov security breach
Ross Williams reports that about 8,800 Marietta, Georgia utility customers may have had their credit card info compromised by the kind of Click2Gov breach we’ve been hearing about since this summer. As in some other reports, their data — or data that is likely to come from this incident — has already been found on…
Another Click2Gov victim is revealed in Texas
Add Sugarland, Texas to any list you are keeping of Click2Gov breach victims. As with other entities in the second wave of attacks, those residents who used the payment portal to make one-time payments seem to have fallen prey to the attackers. And as with a number of other CentralSquare Technologies Click2Gov customers, Sugarland will…