The number of entities disclosing that they were affected by the Fortra/GoAnywhere breach continues to mount. Because a number of entities are part of CHSPSC, LLC (“CHSPSC”) DataBreaches wants to make readers aware of two notices: Community Health System’s security incident notice. and A map of CHSPSC locations so you can look at your state…
Category: U.S.
Noteboom – The Law Firm hit by BlackCat
On March 24, BlackCat emailed Noteboom – The Law Firm, a Texas personal injury law firm. The email, shared with DataBreaches by BlackCat, appeared to be sent from the firm’s own systems administrator, Paul Khong. With some light editing by DataBreaches to correct some typos, it read: This is [ALPHV] aka BlackCat Ransomware Team. We…
Illinois’s Olympia CUSD 16 hit by LockBit3.0
LockBit3.0 claims to have hit the Olympia CUSD 16 in Illinois. So far, they have posted 4 files as proof, one of which appears to be a screencap of a directory of folders that might relate to Olympia North, Olympia South, and students, and another file with employee health-related information. There does not appear to…
HIPAA Data Breach Costs Company Nearly $300,000 In DOJ False Claims Act Settlement
Stacy L. Cook and Iqra Mushtaq of Barnes & Thornburg LLP write: On March 14, 2023, the U.S. Department of Justice (DOJ) announced the settlement of a case involving alleged violations of the False Claims Act (FCA) as a result of cybersecurity failures and breach of HIPAA-protected health information. Obtained under the Civil Cyber-Fraud Initiative, this settlement emphasizes…
Are you a “Lucky Winner” from Equifax?
Earlier today, vx-underground reported that a hoax email was being sent from Equifax with the subject line “Free Pompompurin.” An unknown individual has compromised the email system for Equifax. They have sent out an email with the subject matter as “Free Pompompurin”. Image 1. email extended header information Image 2. email itself pic.twitter.com/mlrO99uVdl — vx-underground…
Developing: Stormous claims to have attacked hospital; apologizes minutes later, pledges to undo damage, and seeks forgiveness (Update1: was this a scam?)
Stormous Ransomware added Cameron Memorial Community Hospital in Indiana to their leak site today and posted a pointer to it on their Telegram channel. Then they appeared to regret their actions, posting the following only minutes later: We are writing to express our sincerest apologies for the recent ransomware attack on hospital IT systems. We…