Well, this is a bit different. On February 13, MKS Instruments in Massachusetts (the U.S. parent company of the MKS and Atotech group of companies) became aware of a ransomware event. By February 16, they issued a notification letter to former and current employees who may have been affected. Their notification informed employees that, “While…
Category: U.S.
Acting Pennsylvania Attorney General Henry Secures $400,000 Settlement with DNA Diagnostics Center Stemming from Data Breach
HARRISBURG – Acting Attorney General Michelle A. Henry today announced a settlement with DNA Diagnostics Center – one of the world’s largest private DNA-testing companies offering diagnostic and genetic testing to help answer relationship, fertility, and health questions – after a data breach exposed the social security numbers of 12,663 Pennsylvanians who were subject to genetic testing…
City of Oakland declares state of emergency after ransomware attack
Sergiu Gatlan reports: Oakland has declared a local state of emergency because of the impact of a ransomware attack that forced the City to take all its IT systems offline on February 8th. Interim City Administrator G. Harold Duffey declared a state of emergency to allow the City of Oakland to expedite orders, materials and equipment procurement,…
California Northstate University student and employee data stolen
In a new listing by AvosLocker, the threat actors leak personal information that can make employees’ lives difficult for years to come. In their leak site listing for California Northstate University, AvosLocker claims: We have Student admissions data include Name, Social Security Number, Date Of Birth, Address, Email, Telephone. All College employees W-2 include in…
FL: Brooks Rehabilitation notifies patients of pixel tracking breach
On January 30, Brooks Rehabilitation (“Brooks”) in Florida disclosed that in December, they discovered tracking technology vendors that provide services to Brooks were able to view/access individually identifiable health information (IIHI) provided when a website user provided contact information or feedback via a Brooks website. The data transmitted could have included information such as name;…
Community Health Systems estimates 1 million patients impacted by vendor’s GoAnywhere breach
Sometimes our first report of a data breach comes in an 8-K filing to the Securities and Exchange Commission. Such is the case with a breach affecting Community Health Systems, Inc. in Tennessee. In its 8-k filing of February 13, CHS discloses that they were recently notified by Fortra, LLC, a third party vendor of…