On September 3, this site reported on a breach involving Dallas ISD in Texas. As noted at the time, details were lacking. But now their external counsel has provided notification to the Maine Attorney General’s Office and so we now know more: The breach, which reportedly occurred on June 8, impacted 795,497 individuals. [Note that…
Category: U.S.
Next Level Apparel Notice of Security Incident
Today’s reminder that you’ll find medical/health info everywhere… GARDENA, Calif., Oct. 5, 2021 /PRNewswire/ — Next Level Apparel (“NLA”) announced today a phishing email incident that involved a small number of email accounts in its computer environment. The phishing email incident resulted in unauthorized access to information contained in some email accounts, including names accompanied by Social…
Hackers of SolarWinds stole data on U.S. sanctions policy, intelligence probe
Joseph Menn and Christopher Bing report: The suspected Russian hackers who used SolarWinds and Microsoft software to burrow into U.S. federal agencies emerged with information about counter-intelligence investigations, policy on sanctioning Russian individuals and the country’s response to COVID-19, people involved in the investigation told Reuters. The hacks were widely publicized after their discovery late…
Two more ransomware attacks on the education sector revealed
In August, DataBreaches.net highlighted ransomware threat actors known as Pysa who have been attacking both the medical sector and the education sector — two sectors near and dear to this site’s publisher. Today, we report on two more school districts attacked by Pysa. Consolidated High School District 230 The Consolidated High School District 230 in…
Ransomware actor tries to pressure Allen ISD by emailing parents
Benjamin Freed reports: The malicious actors behind a ransomware attack against a school district in Texas attempted to extract payment this week with what one analyst said appears to be an entirely new tactic: emailing parents of students with a threat that if school officials do not pay up, their kids’ personal information may be…
IL: OSF Healthcare discloses ransomware incident
In May, 2021, DataBreaches.net sent an email inquiry to OSF Healthcare in Illinois after seeing that threat actors known as Xing Team claimed to have attacked them and exfiltrated data. OSF Healthcare never responded to the inquiry. In June, after Xing Team started dumping what appeared to be patient data, DataBreaches.net sent OSF Healthcare a…