On April 1, DataBreaches.net reported that the University of Maryland, Baltimore was one of the educational entities impacted by the CLOP hack and exfiltration of Accellion client data, but that neither UMD nor Accellion even knew that until the last week in March. This week, the university issued an updated press release that reveals that…
Category: Subcontractor
Caravus impacted by Netgain Technology breach because vendor failure to destroy legacy data
I’ve continued to add updates to a post about the Netgain Technology breach. Keep in mind that the ransomware incident occurred in November, 2020, and since January, we have seen entities disclosing the incident. But one disclosure today is somewhat frustrating to read — and not just for the delay in notification, but for the…
Canada Post informs 44 large business customers of data breach affecting 950K customers
Jackie Dunham reports: Canada Post has informed 44 of its large business customers that information relating to more than 950,000 customers was compromised after one of its suppliers fell victim to a malware attack late last week. On Wednesday, the postal agency announced that Commport Communications, an electronic data interchange solution supplier, had notified them…
Bengaluru civic body faces flak over data breach of Covid patients
Devina Sengupta&Akshatha M report: Covid-19 data records of those who have tested in Bengaluru were out in the public domain for some time, which is a clear violation of IT rules around data privacy and can lead to misuse of the information, experts have said. Free Software Movement of India, a coalition of organisations working on data privacy, on Tuesday…
Air India data breach: Personal info of 4.5 million people leaked due to ‘sophisticated cyberattack’
Poulomi Saha reports: A massive breach in Air India’s server this February led to compromising personal data of nearly 45,00,000 [4.5 million] people worldwide. The leaked data was collected between August 26, 2011 and February 3, 2021. This included people’s personal details like name, date of birth, contact information, passport information, ticket details, credit card…
Updating: CaptureRx incident impacted more than 2.4 million. List of Entities.
Update as of July 13, 2021: The total number impacted has been updated by NEC Networks to 2,420,141. For the past two months, DataBreaches.net has been tracking reports involving NEC Networks, LLC d/b/a CaptureRx. CaptureRx is a specialty pharmacy benefits manager whose services include prescription claims processing, patient assistance program administration, and public health service…