Jonathan Greig reports: The University of Michigan announced that it has severed its ties to the internet and cut off access to some systems after experiencing a cyberattack that began on Sunday. In a message to the school’s more than 51,000 students on Monday, the school’s chief information officer Ravi Pendse said that the university…
Category: U.S.
Developing: Hospital Sisters Health System and Prevea Health hit by cyberattack
Yesterday, DataBreaches received a phone call from an employee at St. Vincent Hospital in Green Bay, Wisconsin. The employee was asking if we knew anything about a cyberattack on Hospital Sisters Health System (HSHS) and stated that everything had been down for two days but the employees were not really being given information other than…
Update: Tucson Unified School District sends out notifications about January cyberattack
There’s another update to the January cyberattack on TUSD by the Royal ransomware group. While the district was still claiming that sensitive data hadn’t been compromised, data from employees was already being leaked on the dark web as early as February. In the last week of August, TUSD sent out notifications to 28,948 people and…
Medically-tailored food provider, PurFoods, discloses data breach
Jurgita Lapienytė reports: PurFoods, which positions itself as a provider of “tailored home-delivered meals,” has reported a data breach affecting over 1.2 million people. PurFoods (doing business as Mom’s Meals) filed a data breach report with the Maine Attorney General’s Office, stating that attackers acquired sensitive info such as name or other personal identifier, together…
Fourth Circuit Decision in Marriott Data Breach Case Kicks the Can Down the Road
Cindy Cohn of EFF writes: When a company that collected your personal data negligently fails to secure it, you should have accountability and relief—including standing to sue. EFF and our friends at Electronic Privacy Information Center filed an amicus brief in late November pointing this out to the U.S. Court of Appeals for the Fourth Circuit in…
Rackspace’s costs to deal with ransomware attack top $10 million
Eric Killelea reports: Rackspace Technology Inc. spent $10.8 million on expenses related to a ransomware attack in December that blocked thousands of customers from accessing their emails and related data, according to regulatory filings. The San Antonio-based cloud computing company paid for costs to “investigate and remediate, legal and other professional services, and supplemental staff resources that…