There’s an update to the ransomware incident involving Little Rock schools, and it’s not a happy one. The Northwest Arkansas Democrat-Gazette reports that at a school board meeting yesterday, the board authorized paying $250,000 “plus other fees.” The incident was first detected on November 11. A number of issues concerning transparency and compliance with Arkansas…
Category: U.S.
Little Rock School Board will meet to decide whether to negotiate settlement after data security breach
Cynthia Howell reports: The Little Rock School Board will hold a special meeting at 5:30 p.m. Monday to decide on whether to negotiate a settlement to a “network issue” that was characterized last week as a “data security incident” that likely resulted in unauthorized extraction of district data. The district announced the special meeting Sunday…
CommonSpirit Health Provides Cyberattack Update and Notification of Data Breach Involving Virginia Mason Franciscan Health in Washington state
There was an update on December 1 to the CommonSpirit ransomware attack that DataBreaches has reported on multiple times already. Press release: On October 2, 2022, CommonSpirit detected activity on its IT network that was later determined to be ransomware. CommonSpirit immediately took steps to secure the network, which included proactively taking certain systems offline, and…
VA admits to improperly disclosing COVID-19 vaccine data for 500,000 staff
Nihal Krishan reports: The U.S. Department of Veterans Affairs has admitted that it failed to adequately protect COVID-19 vaccination status data for about 500,000 of its employees. Following an internal investigation by the VA’s Data Breach Response Service, the agency removed a spreadsheet containing personal details including vaccination status, according to a notice sent to the agency’s…
Rackspace rocked by ‘security incident’ that has taken out some hosted Exchange services
Simon Sharwood reports: Some of Rackspace’s hosted Microsoft Exchange services have been taken down by what the company has described as a “security incident”. The company’s most recent incident report at the time of writing, time-stamped 01:57 Eastern Time on December 3rd, offers the following information. […] Rackspace has no idea when it will be able…
Florida state tax website bug exposed filers’ data
Zack Whittaker reports: A security flaw on the Florida Department of Revenue website exposed at least hundreds of taxpayers’ Social Security numbers and bank account numbers, a security researcher found. Kamran Mohsin said the security flaw — now fixed — allowed him, or anyone else who was logged in to the state’s business tax registration website,…