Seth Austin reports: The Kentucky Energy and Environment Cabinet (EEC) announced they discovered a data security breach on September 8, 2021. According to EEC, unredacted mining permit applications containing some mine owners’ and controllers’ personal information was available for public inspection at Department of Natural Resources’ field offices and on an EEC hosted website. Internal…
Category: U.S.
OH: Bay Village school district accidentally releases students’ personal info, including grades, to all families
Ian Cross reports: Personal information for the entire Bay Village High School senior class, including grades, student ID numbers and test scores, was accidentally emailed to the families of each senior last week, according to a notice sent to families in the district. At about 8:53 a.m. on Tuesday, Nov. 23, a Bay High School…
IL: Evanston Township High School Defrauded Of $48,570 In Hack That Exposed 1,139 Identities
Jonah Meadows reports: Evanston Township High School officials got scammed out of more than $48,000 during a monthslong data breach that also exposed the personal information of more than 1,100 Illinois residents, Patch has learned. The fraudulent payment was reported to Evanston police, and the data breach was disclosed to the Illinois Attorney General’s Office,…
Ransomware attack shuts down Lewis & Clark Community College
Russell Kinsaul reports: Lewis and Clark Community College in Godfrey closed all their campuses this week and cancelled all extra-curricular activities, including sports. The move was made after the director of information technology noticed suspicious activity last Tuesday and shut down the school’s computer network on Wednesday. According to college president, Ken Trzaska, hackers got…
OR: One Community Health reports April cyberattack
On September 13, DataBreaches.net added an entry to the monthly worksheet this site maintains for annual data analyses. The entry was for “One Community Health” in Oregon, but it was not the covered entity that announced the breach. DataBreaches.net learned about the breach from Pysa threat actors who had added the covered entity to their…
Class Certification Order Lifted in Data Breach Lawsuit Against West Virginia University Health System
HIPAA Journal reports: A class action lawsuit filed against West Virginia University Health System over a breach of the protected health information of 7,445 patients has had the class certification order lifted by the Supreme Court of Appeals of West Virginia. The lawsuit is related to an insider data breach that occurred in 2016. Between…