Add yet one more business associate to those affected by the Clop attack on Progress Software MOVEiT. Nuance has disclosed that it was affected by the May attacks. Although no number was revealed, the Microsoft-owned technology firm stated it was disclosing on behalf of: Atrium Health, the Charlotte-based health care system giant. Catawba Valley Medical…
Category: Subcontractor
FTX restores claims portal after security breach incident
Haseeb Shaheen reports: In a recent turn of events, the claims portal for the globally renowned cryptocurrency exchange FTX has resumed its full-fledged operation. The operations were suspended following a security incident that took place with Kroll, the third-party agent responsible for handling the creditor claims amidst the ongoing FTX bankruptcy. The cybersecurity incident is just…
Colombia Reports Cyberattack With Impact Across Latin America
The Defense Post reports: Colombia has reported a massive cyberattack affecting dozens of government websites and impacting countries across Latin America. Local media said Thursday that key websites — such as the justice, health, and culture ministries as well as several hospitals — had been affected by a ransomware attack. The presidency said in a…
Personal information of thousands of Sanford Health patients potentially compromised
Gretchen Hjelmstad reports: The imaging vendor Sanford Health uses for its mobile heart screen trucks, DMS Health Technologies, experienced a data security incident between March 27 and April 24, 2023. According to Sanford Health, patient information was potentially compromised including name, date of birth, date of service, physician name and exam type. Sanford Health is…
MO: Cyberattack causes multiple court systems to shut down some public safety computer servers
Kelsey Landis reports: A cyberattack caused St. Louis County to shut down some computer systems used to look up court cases, issue charges and process people in custody at the jail, County Executive Sam Page said Tuesday. Police officers, jail officials, the county counselor, municipal court officials and the prosecuting attorney’s office all use the…
An inexcusable gap from breach to notification, or an excusable one?
Some state and federal laws provide specific timeframes by which breached entities must provide notice to regulators and to those affected by a data breach. Unfortunately, loopholes abound, as we seen in statutory language such as Minnesota’s breach notification law, where for timing of notification, it says: “The disclosure must be made in the most…