The Ottuma Courier reports that a dental office is notifying patients whose information may have been exposed in a ransomware incident. They report, in part: On Nov, 22, 2020, the office of Gregory P. Vannucci, a dental provider and oral surgeon, detected a network security incident affecting his practice. An unauthorized third-party accessed the network…
Category: U.S.
Hit by Conti ransomware in October, Medical Healthcare Solutions now notifying clients’ patients (Update 1)
On January 21, Medical Healthcare Solutions issued a statement on its website about a ransomware attack, although they do not state that it was a ransomware attack. Nor do they identify the incident as an attack by Conti, but it was. Medical Healthcare Solutions, Inc. (MHS), recently experienced a cyber-incident that impacted some protected health…
Midland University in Nebraska victim of ransomware attack last January
Add Midland University to any list of secondary educational institutions hit by ransomware. From their recent notification: On January 18, 2021, Midland discovered that its network had been impacted by a sophisticated malware attack that encrypted certain computer files. Midland immediately launched an investigation, with the assistance of third-party computer forensic specialists, to determine the…
AL: NHS Management Discloses Incident from Last May
Sometimes, what looks like an update isn’t actually an update but an initial disclosure. On January 14, the following press release appeared about an Alabama entity. Neither the press release nor the notice on the entity’s website specifically identifies this as a ransomware incident. NHS Management, which manages 50 long-term care and rehabilitation facilities in…
The high cost of mishandling data breaches, security reporting for financial services
Karen Hoffman reminds readers of the costs of poor security, reporting, in part: Last month, the U.S. Securities and Exchange Commission (SEC) fined Chase $125 million due to employees’ insecure practices, namely using WhatsApp and personal email accounts to transact official business, thus not adhering to SEC record-keeping requirements. Additionally, under a separate enforcement action,…
CEO of Cryptsy, a Major Online Cryptocurrency Exchange Company, Indicted for Defrauding Company’s Customers, Destroying Evidence, and Tax Evasion
Miami, Florida – A 17-count indictment was unsealed in federal court in Miami, Florida charging Paul E. Vernon, 48, the founder, operator, and Chief Executive Officer (CEO) of Project Investors Inc., doing business as Cryptsy, with criminal violations for his involvement in a sophisticated theft scheme involving his cryptocurrency exchange. The charges include tax evasion,…