Erin Keller reports: The Maine Information and Analysis Center (MIAC), a unit of the Maine State Police, has suffered a significant data breach. MaineBeacon.com reports that the documents from MIAC have been leaked online. They include personal information about subjects of police investigations across the state of Maine and reveal details of the center’s operational practices,…
Category: Subcontractor
Deloitte Consulting sued in two states over unemployment portal data security issues
Last month we started seeing reports of data leaks or breaches involving state unemployment benefits application portals. We also started seeing reports of lawsuits filed as a result. Ben Szalinski reports that in Illinois, one of the nearly 32,500 applicants who had private information exposed said it was used to access her bank account. Briana…
Ransomware victims keep paying, and ransomware groups keep growing
Graham Cluley writes: The City of Florence in northern Alabama has agreed to pay a ransom of US $300,000 worth of Bitcoin to hackers who compromised its computer systems and deployed ransomware. At an emergency meeting this week, the Florence City Council unanimously voted to give in to the extortionists’ demands and pay the cybercriminals…
Lawsuit Filed Against Accounting Firm in Ransomware Attack That Impacted Patient Data
More coverage of a lawsuit against BST, a CPA firm that is a business associate of Community Care Physicians. BST had been attacked by Maze ransomware, and when they did not pay the demanded ransom, the ransomware operators started dumping some of the data to increase pressure on them. Now patients of Community Care Physicians…
BST sued by Community Care customers over Maze ransomware attack
Larry Rulison reports: Lawyers for patients of Community Care Physicians that were victimized by a cyber ransomware attack last December are suing the accounting firm that the medical practice hired to protect its customer data, some of which was published online. The class-action lawsuit was filed in state Supreme Court in Albany last month against …
San Francisco Employees’ Retirement System notifies employees of contractor breach
The San Francisco Employees’ Retirement System has been notifying people about a breach. From their notification, this explanation of what happened: The Retirement System contracts with vendors to provide SFERS members with on‐ line access to their account information. One of the vendors, 10up Inc., set up a test environment on a separate computer server…