On April 1, DataBreaches.net reported that the University of Maryland, Baltimore was one of the educational entities impacted by the CLOP hack and exfiltration of Accellion client data, but that neither UMD nor Accellion even knew that until the last week in March. This week, the university issued an updated press release that reveals that…
Category: U.S.
Hoboken Radiology reveals breach of imaging server that began in 2019
Hoboken Radiology LLC in New Jersey issued a press release yesterday about an incident that began in June, 2019. The full text of the release is below the separator. DataBreaches.net has sent an inquiry to the practice asking them who informed them in November — was it law enforcement, a vendor, a researcher, or their…
Caravus impacted by Netgain Technology breach because vendor failure to destroy legacy data
I’ve continued to add updates to a post about the Netgain Technology breach. Keep in mind that the ransomware incident occurred in November, 2020, and since January, we have seen entities disclosing the incident. But one disclosure today is somewhat frustrating to read — and not just for the delay in notification, but for the…
FL: Safeguard lapse allowed student to access and disrupt Pinellas County school computer system, police say
Walt Buteau reports: A computer system safeguard that the Pinellas County School District was paying for unknowingly lapsed this year, allowing a 17-year-old student to access and disrupt the district’s system, according to school officials. According to a St. Petersburg police arrest affidavit, the high school student allegedly broke into the district computer network March…
Russian SolarWinds hackers launch email attack on government agencies
Nobelium launched the attacks after getting access to an email marketing service used by the United States Agency for International Development, or USAID, according to Microsoft. Guardian staff and agencies report: The state-backed Russian cyber spies behind the SolarWinds hacking campaign launched a targeted phishing assault on US and foreign government agencies and thinktanks this…
Philly data breach that impacted health employee emails also hit other departments
Emily Scott reports: The City of Philadelphia has released an update on an investigation into a data breach that left some employee email accounts accessible to unauthorized individuals. The incident, initially identified in March 2020, was the result of an employee’s email account that was exposed due to a phishing attack. The breach impacted people receiving services…