The Bradenton Herald reports: Sensitive information — including Social Security numbers, birthdays and addresses — for current and former patients at Coastal Orthopedics may have been compromised after an attacker hacked into the company’s system. The company detected suspicious activity on its network around June 11, prompting an investigation, according to a press release. Although…
Category: U.S.
United Bank Notifies Individuals of MOVEit Breach Involving Camden-Clark Physician Corporation and Camden-Clark Memorial Hospital Corporation
United Bank, a financial services institution which provides banking services to Camden-Clark Physician Corporation, a physicians’ group practice located in Parkersburg, W.V. and Camden-Clark Memorial Hospital Corporation (collectively “Camden-Clark”), suffered a data security incident. This data security incident involved the compromise of a software product called MOVEit that is used by thousands of organizations around…
Colorado Department of Health Care Policy & Financing reports more than 4 million affected by MOVEit breach
As I tooted earlier this morning on Infosec.Exchange: One of the MOVEit victims was the Colorado Department of Health Care Policy & Financing, which was notified by IBM of the data breach. According to their notification, the information types included full name, Social Security number, Medicaid ID number, Medicare ID number, date of birth, home…
Everything old is new again? Medusa attempts to up the pressure on a victim with a DDoS attack
Over on Suspect File, Marco A. De Felice has an exclusive on an attack by Medusa on Levare International, formerly known as Borets International. Levare, headquartered in Dubai, is a manufacturer of artificial lifts and submersible pumps used by the oil and gas industry. Its U.S. headquarters is in Houston, Texas. Suspect File reports that…
One year later, Tift Regional Medical Center notifies patients of Hive attack
In September 2022, DataBreaches broke the story of how Hive had attacked Tift Regional Medical Center in Georgia between July and August. The attack did not involve encryption of systems but Hive claimed to have exfiltrated about 1 TB of data, including files with protected health information. On October 14, Tift notified HHS of an…
IN: Cummins Behavioral Health Systems discovers cyberattack when it finds ransom note
Sometime between Feb. 2 and March 9 of this year, Cummins Behavioral Health Systems (CBHS) in Indiana became a victim of a cyberattack. CBHS is a private not-for-profit organization providing behavioral health services in Boone, Hendricks, Marion, Montgomery, Putnam, and surrounding counties in Central and West Central Indiana. It provides care to persons of all…