Schools continue to be an attractive and all-too-easy target for criminal groups. This week, Rhysida threat actors added Paris High School in Illinois to their leak site as an “auction” item: There is nothing on the district’s website to indicate any problems or breach. The only possible indicator currently found was on the district’s…
Category: U.S.
Cyberattack is a factor in Illinois hospital’s closure
Sean Lyngaas reports: A hospital in Illinois will close on Friday due in part to a cyberattack – a rare case of a health care provider publicly linking a hack incident to its closure. The 2021 cyberattack on St. Margaret’s Health, a hospital in Spring Valley, Illinois, hobbled computer systems for months and prevented it…
Data breach prompts University of Pittsburgh Medical Center billing contractor to contact 25,000 patients
Kris B. Mamula reports: Some 25,000 University of Pittsburgh Medical Center (UPMC) patients are being contacted by a Tennessee billing contractor following a data breach caused by a software bug that may have exposed names, addresses, social security numbers and other personal information. Kingsport-based Intellihartx LLC, which provides UPMC with billing and collection services, is…
Thousands of students’ data breached in Minnesota Department of Education hack
Hayley Raatis reports that about 95,000 students have been affected by the MOVEit file transfer breach that also affected the Minnesota Department of Education. The initial investigation found 24 files were accessed due to the vulnerability. These files included data transferred to MDE from the Minnesota Department of Human Services (DHS) to meet state and…
Intellihartx notifies 490,000 patients of Fortra/GoAnywhere breach (with updates)
Quick update: Intellihartx LLC in Tennessee is notifying 489,830 of its clients’ patients about the Fortra/GoAnywhere breach by Clop. The types of information that may have been compromised include name, address, medical billing and insurance information, certain medical information such as diagnoses and medication, and demographic information such as date of birth and Social Security…
Another hospital hit by ransomware: Columbus Regional Healthcare System in North Carolina hit by Daixin
Columbus Regional Healthcare System (CRHS) is a non-profit organization in North Carolina licensed for 154 beds. The Daixin ransomware group claims that on May 18, they encrypted the hospital’s servers after exfiltrating data and deleting backups. A Ransom Demand and Failed Negotiations A spokesperson for Daixin tells DataBreaches that three days after they encrypted the…