In their predictions for 2023, the very first prediction by Mary T. Costigan, Jason C. Gavejian & Joseph J. Lazzarotti of JacksonLewis involved healthcare and medical data security and tracking: 2023 will see a significant increase in the number of lawsuits and perhaps OCR compliance reviews relating to medical information privacy and HIPAA, including new…
Category: U.S.
Zacks Investment Research notifies 820,000 clients
Bill Toulas reports: Hackers breached Zacks Investment Research (Zacks) company last year and gained access to personal and sensitive information belonging to 820,000 customers. […] An internal investigation into the incident determined that a threat actor gained access to the network somewhere between November 2021 and August 2022. It is unclear if any data was…
Stratford University discloses ransomware attack — but which ransomware attack?
In September 2022, DataBreaches reported Stratford University had been the target of three ransomware attacks in previous months by REvil, Snatch Team, and Avos Locker. Snatch Team and Avos Locker had informed DataBreaches that neither had encrypted Stratford’s files; they exfiltrated and attempted to ransom them. Stratford never responded to inquiries from DataBreaches about the multiple…
Lutheran Social Services of Illinois notifies 184,183 of ransomware attack one year ago
On March 25, 2022, Lutheran Social Services of Illinois (LSSI) notified HHS of a breach affecting 1,000 people. The incident, still under investigation by HHS, was coded as a “Hacking/IT Incident” involving data on the network server. On January 25, 2023, LSSI notified the Maine Attorney Genera’s Office a breach affecting a total of 184,183…
Alleged French cybercriminal to appear in Seattle on Friday on indictment for conspiracy, computer intrusion, wire fraud and aggravated identity theft
The following is the DOJ’s press release on Sebastien Raoult: Seattle – A 21-year-old French citizen from Epinal, France, will appear tomorrow January 27, 2023, in U.S. District Court in Seattle on a nine-count indictment alleging conspiracy to commit computer fraud and abuse, conspiracy to commit wire fraud, four counts of wire fraud and three counts…
Hive Ransomware’s infrastructure seized; law enforcement “hacked the hackers”
After months of a “cyber stakeout” in which law enforcement officials lawfully hacked the hackers, one of the top ransomware gangs in the world had their servers seized and their operations dismantled. DataBreaches reported the seizure earlier this morning. Hive ransomware gang has been the subject of numerous posts on DataBreaches over the past two…