Update: This incident was subsequently reported to the Maine Attorney General’s Office as impacting 334,690. Keep in mind that those are providers, not patients. See Maximus’s notice to California here. Kaitlin Schroeder reports: A state contractor shared Monday that Ohio Medicaid providers may have had their personal data exposed a month ago when someone gained…
Category: U.S.
OK: Lucky Star Casino Confirmed It Suffered Ransomware Attack
News9 reports: After its locations statewide were closed over the weekend, Lucky Star Casinos (sic) said Monday that it was the subject of a ransomware attack. The casino announced on its Facebook page Saturday that it closed its locations across the state. Read more on News9.
Woman Arrested In 2019 Case of Fraud Involving Data Breach of Florida DCF
There’s an update to an incident first reported in 2019. A woman who was involved in a data breach with the Florida Department of Children and Family Services in 2019 that affected 2,000 people and over $260,000 in retail theft, has been transferred to Miami-Dade County and was in court Saturday. Bertanicy Garcia, 50, a…
50,000 security disasters waiting to happen: The problem of America’s water supplies
Kevin Collier reports: On Jan. 15, a hacker tried to poison a water treatment plant that served parts of the San Francisco Bay Area. It didn’t seem hard. The hacker had the username and password for a former employee’s TeamViewer account, a popular program that lets users remotely control their computers, according to a private report…
State Legislatures Consider Bans on Ransomware Payments
Emily Poole of Alston & Bird writes: As ransomware attacks continue to dominate the news cycle, legislation has recently been introduced in several states that would place limits on certain entities’ ability to pay a ransom payment in the event of a ransomware attack. Although the proposed limits would generally apply to state agencies and…
NJ: Coastal Medical Group notifies patients of data breach
Coastal Medical Group, Old Bridge, is notifying patients of a data security incident that involved the patients’ health information. On April 21, the practice discovered that certain of its computer systems were being affected by a data security event that the practice believes began on March 25, 2021, according to a prepared statement. After discovering…