Cynthia Howell reports: The Little Rock School Board will hold a special meeting at 5:30 p.m. Monday to decide on whether to negotiate a settlement to a “network issue” that was characterized last week as a “data security incident” that likely resulted in unauthorized extraction of district data. The district announced the special meeting Sunday…
Category: U.S.
CommonSpirit Health Provides Cyberattack Update and Notification of Data Breach Involving Virginia Mason Franciscan Health in Washington state
There was an update on December 1 to the CommonSpirit ransomware attack that DataBreaches has reported on multiple times already. Press release: On October 2, 2022, CommonSpirit detected activity on its IT network that was later determined to be ransomware. CommonSpirit immediately took steps to secure the network, which included proactively taking certain systems offline, and…
VA admits to improperly disclosing COVID-19 vaccine data for 500,000 staff
Nihal Krishan reports: The U.S. Department of Veterans Affairs has admitted that it failed to adequately protect COVID-19 vaccination status data for about 500,000 of its employees. Following an internal investigation by the VA’s Data Breach Response Service, the agency removed a spreadsheet containing personal details including vaccination status, according to a notice sent to the agency’s…
Rackspace rocked by ‘security incident’ that has taken out some hosted Exchange services
Simon Sharwood reports: Some of Rackspace’s hosted Microsoft Exchange services have been taken down by what the company has described as a “security incident”. The company’s most recent incident report at the time of writing, time-stamped 01:57 Eastern Time on December 3rd, offers the following information. […] Rackspace has no idea when it will be able…
Florida state tax website bug exposed filers’ data
Zack Whittaker reports: A security flaw on the Florida Department of Revenue website exposed at least hundreds of taxpayers’ Social Security numbers and bank account numbers, a security researcher found. Kamran Mohsin said the security flaw — now fixed — allowed him, or anyone else who was logged in to the state’s business tax registration website,…
‘We weren’t ready’ — Inside St. Michael Medical Center during October cyberattack outages
Nathan Pilling reports: In early October, a fresh batch of troubles arrived at St. Michael Medical Center. They would first be linked to an “IT security incident.” It would eventually be acknowledged by the hospital’s parent organization, CommonSpirit Health – one of the largest nonprofit health care systems in the country – that the group…