In January 2022, DataBreaches reported that New York announced a $600,000 agreement with EyeMed that resolved a 2020 phishing incident that compromised the personal information of approximately 2.1 million consumers nationwide, including 98,632 in New York. But that was not the end of enforcement action and monetary penalties for EyeMed. Now the state’s Department of…
Category: U.S.
WA: Whitworth confirms it was victim of ransomware attack; warns thousands of students, staff of data breach
In August, Whitworth University confirmed they had experienced a cyberattack in July. In that statement, they pledged to notify those impacted right away. They didn’t — unless you have a very liberal definition of “right away.” Earlier this month, the university notified the state attorney general’s office of the breach, as The Spokesman-Review reports. As…
Verizon notifies prepaid customers their accounts were breached
Sergiu Gatlan reports: Verizon warned an undisclosed number of prepaid customers that attackers gained access to Verizon accounts and used exposed credit card info in SIM swapping attacks. “We determined that between October 6 and October 10, 2022, a third party actor accessed the last four digits of the credit card used to make automatic payments…
Feds: Ex Louisville Police Officer Used Law Enforcement Tech To Help Hack Sexually Explicit Photos From Women
Josh Wood reports: A former Louisville Metro Police Department officer used law enforcement technology as part of a scheme that involved hacking the Snapchat accounts of young women and using sexually explicit photos and videos they had taken to extort them, federal prosecutors said in court documents filed on Tuesday. According to a sentencing memorandum,…
Phishing incident may have exposed Seton patient names, clinical information
Jack Dowling reports: A vendor associated with Seton Medical Center in Harker Heights was recently the victim of a phishing incident, according to a news release from the hospital late Friday afternoon. According to the center, an unauthorized agent accessed the email accounts of two of the vendor’s employees. Read more at KDH News.
New Mexico’s Cybersecurity Office Investigating Unauthorized Access To Information Systems At State Agency
The Department of Information Technology’s (DoIT) Cybersecurity office is investigating unauthorized access at the state’s Regulation and Licensing Department (RLD). The state continues to investigate the situation, but is confident that any unauthorized access has been isolated and mitigated. Read more at Los Alamos Daily Post.