As noted previously on this site, Point-Of-Sale (POS) vendor NEXTEP confirmed that they were investigating a potential breach after being notified by law enforcement that some of its customer locations had been compromised in a potentially wide-ranging credit card breach. Brian Krebs broke the story, here. Today, Compass Group USA submitted a copy of an April 16th notification…
Category: Subcontractor
And then there were four five (Ascension Health entities breached)
Now that I know what I’m looking for, I’m finding more evidence of targeted email attacks affecting members of Ascension Health. For previous reports on this incident, read here and here. On March 16, Sacred Heart Health System in Florida posted this notice on their site about a breach they reported to HHS as affecting…
VA report for March, 2015
From their statistics: Intrusion Attempts (Blocked): 358,163,688 Malware (Blocked/Contained): 1,190,896,611 Suspicious/Malicious Emails (Blocked): 81,343,076 Outgoing Unencrypted Emails: 1,136 Associated Privacy/Security Events 18,589 Total Emails Blocked Lost and Stolen Device Incidents: 50 Lost PIV Cards: 154 Mishandled Incidents: 105 Mis-mailed Incidents: 165 Paper Mis-mailings, 7 Pharmacy-item Mis-mailings out of 7,465,613 Total Mailings In terms of specific incidents reported, a cooler containing lab specimens…
Travelers, Ignition Studio agree to dismiss lawsuit over Alpine Bank data breach
Law360 reports that Travelers Casualty and Surety Co. has settled its lawsuit against Ignition Studio Inc. The suit had alleged that Ignition Studio had not adequately secured Alpine Bank’s web site, resulting in a hack in 2012. Yesterday, both parties stipulated to the “dismissal of this action in its entirety with prejudice, each party to bear its…
Biggby Coffee warns of data security breach impacting customers and job applicants
Lindsay VanHulle reports: Biggby Coffee today said it was the target of a security breach that potentially exposed customers’ names, addresses, phone numbers, email addresses and employment histories. The East Lansing coffee chain did not say how many customers were affected. But Biggby said their data might have been compromised when they registered a frequent…
NJ: Weak password blamed in Swedesboro school hack
Carly Q. Romalino reports: A weak network password allowed hackers to infiltrate a Gloucester County school district’s network last week, holding its files hostage for more than $125,000, according to Educational Information and Resource Center experts. A ransomware attack on Swedesboro-Woolwich Elementary School District’s network last week interrupted state-mandated testing and locked down network files…