Sometimes it takes years before we find out more details about a particular attack. On Friday, AFP reported that the source of months-long DDoS attacks on U.S. banks in 2012-2013 were compromised Swedish military computers that were used to launch the attacks. An Iranian hacktivist group had claimed responsibility for the attacks. Speaking to AFP, military…
Category: U.S.
Whiting-Turner notifies employees of potential breach at vendor
A Whiting-Turner vendor seems to have had a breach, although the nature of the breach or numbers affected are not clear. From WT’s notification template: Whiting-Turner is writing to inform you of a recent event that may affect the security of your child’s personal information. We are providing this notice to provide you, the parent/guardian, with…
IA: Private student documents found at recycling center
Holly Hines reports: Documents found at an Iowa City recycling center last month contain personal information about local elementary school students, including their names, addresses and parents’ names. Antonio Montoya, a 22-year-old Iowa State University student, said he visited City Carton Recycling on March 19 and noticed a pile of Grant Wood Elementary students’ Individualized Education Program documents, which detail…
OptumRx notifying patients after laptop with PHI stolen from vendor’s unattended vehicle
Now what vendor was this? I don’t see anything in recent reports or on HHS’s public breach tool that would identify the vendor. From a notification template by OptumRx: We wanted to make you aware of a recent incident that may have affected some of your health information. On March 22, 2016, we were notified…
Security flaws found in 3 state health insurance websites
AP reports: Federal investigators found significant cybersecurity weaknesses in the health insurance websites of California, Kentucky and Vermont that could enable hackers to get their hands on sensitive personal information about hundreds of thousands of people, The Associated Press has learned. And some of those flaws have yet to be fixed. Read more on Midland…
MedStar: Ransomware success wasn’t IT department’s fault
Sean Gallagher reports that MedStar is firmly denying others’ reporting about their recent ransomware attack: Tami Abdollah of the Associated Press reported Tuesday that an anonymous source “familiar with the investigation” of the cyberattack claimed that the flaws that allowed attackers to compromise a JBoss Web application server and attack the network with Samsam crypto-ransomware had…