Received today: Dear valued customer, We are writing to inform you that we recently detected some unusual activity within portions of the LastPass development environment. We have determined that an unauthorized party gained access to portions of the LastPass development environment through a single compromised developer account and took portions of source code and some…
Category: U.S.
NH: Northeast Rehabilitation Hospital Network updates their 2021 breach notification
In November 2021, the Northeast Rehabilitation Hospital Network in New Hampshire notified HHS of a breach. At the time, they indicated 501 patients had been affected, which is usually just a marker for “we know it’s more than 500, but we don’t know how many just yet.” The incident was coded as a hacking/IT incident…
Hive starts dumping patient and employee data from Baton Rouge General Health System
On July 15, DataBreaches reported that Baton Rouge General Medical Center in Louisiana had been the victim of a significant ransomware attack. Our report attributed the attack to Hive although Hive was publicly denying responsibility at the time and claiming DataBreaches had “incorrect info.” Our information was correct. On Tuesday, Hive added the health center…
Block sued after ex-staffer siphons customer data
Thomas Claburn reports: Block – the digital payments giant formerly known as Square – faces allegations it failed to take adequate measures to protect customers’ personal information. A lawsuit [PDF], filed Tuesday in a federal district in Oakland, California, on behalf of two users of Cash App, operated by Block subsidiary Cash App Investing, claims the company…
Liberty Counsel’s Donor Records and Pro-Trump Election Messaging Exposed in Data Breach
Micah Lee and Michael Sherrard report: Liberty Counsel, an evangelical Christian nonprofit that provided a brief cited by the Supreme Court in its decision to overturn Roe v. Wade, has been hacked, revealing a 25-gigabyte internal database that contains nearly seven years’ worth of donor records. The hacker, who identifies with the Anonymous movement, released…
Schools in Texas, Pennsylvania, and California hit with ransomware as schools reopen for the year
One lesson that should have been learned from past years is that ransomware groups will attack schools right as they get ready to open for the school year because districts may feel more pressured to pay so they can open. So far this week, DataBreaches has spotted ransomware attack reports on two k-12 school districts…