Damon W. Silver of JacksonLewis writes: As noted in a prior post, New York’s Attorney General (“NYAG”) has made enforcement of the New York SHIELD Act an enforcement priority. The SHIELD Act requires organizations handling personal information related to New York residents to maintain reasonable safeguards to protect that information. Maintaining its focus on this area, the NYAG…
Category: U.S.
San Bernardino County pays $1.1M ransom after cyberattack disrupts Sheriff’s Department systems
KABC reports an update to an attack disclosed last month: San Bernardino County paid a $1.1 million ransom to hackers who infiltrated the Sheriff’s Department computers, officials acknowledged Friday. Last month, the department admitted a hack encrypted many of its files, disrupting systems and blocking access to data. County officials told ABC News on Friday…
NY: Catholic Health patients may have fallen victim to data breach by a consultant’s employee
Evan Anstey reports: Some of Catholic Health’s long-term care residents may have fallen victim to a data breach that took place over the summer. The health organization says Minimum Data Set Consultants (MDS), a firm that provides consulting services to skilled nursing facilities, was the target of the breach. MDS started investigating this in March,…
WA: Adna School District Defrauded $346,000 in Phishing Scam
The Chronicle reports: The Adna School District was defrauded of $346,000 through what school officials have called a “sophisticated phishing scam,” according to Adna Superintendent Thad Nelson. The district announced the fraud in a detailed email to The Chronicle on Thursday, noting that after the activity was confirmed, the district notified the FBI, the Washington…
NY: University Urology notifies 56,816 patients of unauthorized access to their PHI
University Urology (UU) in New York City recently posted a notice about an incident on their website. Their notice, dated May 1, explains that on or about February 1, 2023, UU detected suspicious activity in its environment. The investigation revealed that an unauthorized actor had gained access to protected health information stored in UU’s system….
Lake Dallas Independent School District notifies 21,982 Texans of breach
In April, the Royal ransomware gang added Lake Dallas Independent School District in Texas to its leak site. Quoting the district’s description of itself, the attackers commented: Lake Dallas Independent School District has a vibrant, growing student population, an excellent array of programs, a strong curriculum, and a progressive, innovative atmosphere. Seems like everything…