U.S. – DataBreaches.Net

HealthEC Agrees to $5.48 Million Settlement to End Data Breach Lawsuit

Posted on June 17, 2025 by Dissent

Daniel Lopez reports: HealthEC LCC and its clients finally reached a settlement to resolve a class action data breach lawsuit involving a hacking incident and data breach in 2023. Analytics software vendor HealthEC, based in New Jersey, provides healthcare companies with a platform to determine high-risk patients and limitations to optimal healthcare. From July 14, 2023…

School Districts Unaware BoardDocs Software Published Their Private Files

Posted on June 12, 2025 by Dissent

Mark Keierleber has an interesting and concerning update on the BoardDocs breach previously reported by DataBreaches on June 1: BoardDocs, a software tool used by thousands of school boards to track meeting minutes and store confidential information, has suffered a data breach affecting districts nationally, The 74 has learned. Records at the center of the…

Help, please: Seeking copies of the PowerSchool ransom email(s)

Posted on June 11, 2025 by Dissent

Help, please: If anyone has a copy of the ransom note sent to PowerSchool in December 2024 or to PowerSchool clients on or about May 7, 2025, please email me a copy or upload it to me on Signal. I want to see not only the body, but the full header and signature. To reach…

Texas DOT investigates breach of crash report records, sends notification letters

Posted on June 7, 2025 by Dissent

Randall Case reports: A compromise of an account has led to improper downloads of a large number of crash records, the Texas Department of Transportation announced Friday. On May 12, TxDOT identified unusual activity in its Crash Records Information System (CRIS) and further investigation revealed the activity originated from an account that was compromised and…

PowerSchool hacker pleads guilty, released on personal recognizance bond

Posted on June 6, 2025June 6, 2025 by Dissent

He’s just a frail-looking teenager, but he sent threatening emails to get his victims to pay his extortion demands. Today, 19 year-old Assumption College student Matthew Lane waived indictment and pleaded guilty in a Worcester courtroom to hacking an unnamed telecom company and an unnamed edtech vendor, widely known to be PowerSchool. As per the…

Central Maine Healthcare tackles suspected cybersecurity issue; hospitals remain open

Posted on June 2, 2025 by Dissent

Central Maine Healthcare posted a notice on its Facebook page today: On June 1, 2025, technicians monitoring the information systems at Central Maine Healthcare identified unusual activity within the system’s computer software. In response, they immediately secured and shut off all information technology applications and hardware, including network servers and phone systems. Central Maine Medical…