It is still fairly rare for a ransomware victim to totally shutter its doors permanently as a result of an incident, but a relatively small breach in Georgia was reportedly fatal for Ascension Health Services LLC DBA Alpha Wellness and Alpha Medical Centre. A notice on its website dated April 4, 2025 reads: We are…
Category: U.S.
Michigan ‘ATM jackpotting’: Florida men allegedly forced machines to dispense $107K
Cole Waterman reports: Two Florida men allegedly spent a September day burglarizing ATMs in four Michigan counties, making off with more than $100,000. The next month, police found them in a Minnesota hotel amid stacks of cash. The duo is now facing federal charges for allegedly engaging in a lucrative, tech-savvy scam known as “ATM…
Missouri Adopts New Data Breach Notice Law
J. Randall Coffey, Daniel Pepper, and Jillian Seifrit of Fisher Phillips write: On July 2, Missouri’s Governor approved House Bill 974, “The Insurance Data Security Act,” which will establish standards for insurers and licensed entities regarding data security, breach investigations, and notification protocols when it takes effect on January 1, 2026. What are the 10…
Multiple lawsuits filed against Doyon Ltd over April 2024 data breach and late notification
KUAC reports: Multiple class action lawsuits recently filed in federal court claim an Interior Alaska Native Corporation failed to take reasonable steps to protect personal data from a cyberattack last year. Court filings show at least four different plaintiffs have lodged a complaint against Doyon, Ltd., in Alaska District Court since mid-June, on behalf of…
CISA tags Citrix Bleed 2 as exploited, gives agencies a day to patch
By the end of yesterday, federal agencies should all have patched. But did they? And how many others have yet to patch? Bill Toulas reports: The U.S. Cybersecurity & Infrastructure Security Agency has confirmed active exploitation of the CitrixBleed 2 vulnerability (CVE-2025-5777) in Citrix NetScaler ADC and Gateway and is giving federal agencies one day…
Avantic Medical Lab hacked; patient data leaked by Everest Group
On June 10, the Everest Group added a listing for Avantic Medical Lab to its leak site, accompanied by a one-week countdown clock and four screenshots containing patient information as proof of the claims. When the attack first occurred, and whether Everest had contacted Avantic before June 10, is unknown to DataBreaches, but on June…