You may have been a bit confused by the rapidly changing status involving Mobile County Public Schools in Alabama, who were impacted by a ransomware attack. Their site was down for about 24 hours, but is back up. The ransomware attack was against their vendor, SchoolinSITES.
Category: Subcontractor
Presbyterian Health business associates disclose breach
Magellan Healthcare and National Imaging Services recently notified OCR of a HIPAA breach impacting 55,637 and 589 patients, respectively. The notification was made to OCR on September 17. A press release issued by Magellan Health, Inc. for its subsidiaries, obtained by DataBreaches.net, reported that an anonymous, unauthorized third party accessed the email accounts of two…
Tortoiseshell Group Targets IT Providers in Saudi Arabia in Probable Supply Chain Attacks
Symantec reports: A previously undocumented attack group is using both custom and off-the-shelf malware to target IT providers in Saudi Arabia in what appear to be supply chain attacks with the end goal of compromising the IT providers’ customers. The group, which we are calling Tortoiseshell, has been active since at least July 2018. Symantec…
Secret Service Investigates Breach at U.S. Govt IT Contractor
Brian Krebs reports: The U.S. Secret Service is investigating a breach at a Virginia-based government technology contractor that saw access to several of its systems put up for sale in the cybercrime underground, KrebsOnSecurity has learned. The contractor claims the access being auctioned off was to old test systems that do not have direct connections…
Undisclosed number of Boy Scouts and their parents had their information exposed by Trails End
Katie Peralta reports: A partner of the Boy Scouts of America inadvertently exposed the personal information of children and their parents last month. What happened: Boy Scouts nationwide sell popcorn to raise funds for activities like camping trips — just like Girl Scouts sell cookies. To facilitate the sales process, Boy Scouts of America uses…
Update on Pearson Breach: Parent Files Class-Action Suit After Data Breach Exposes Nearly 1 Million Schoolchildren’s Personal Information
CBS reports: A mother filed a federal class-action lawsuit on her daughter’s behalf Thursday, after nearly a million students nationwide had their personal information exposed in a data breach by a company used to track student academic progress. The Indian Prairie School District 204 in Naperville was among the academic districts affected. The woman, identified…