Mary B. Pasciak reports: When ransomware hit the Buffalo Public Schools in March, the district told students and families that investigators had not determined that any personal information had been exposed. Two months later, investigators have found that such information was exposed. Personal information about an unknown number of students, parents and employees has been…
Category: U.S.
NC: Anson experiences cyberattack; county services including phone, email affected
Liz O’Connell reported earlier this week: WADESBORO — The Anson County government experienced a cyberattack over the first weekend of May, which turned out to be more serious than initially thought. The most recent update from the county stated that does not appear to be any employee or citizen personal data compromised from the malware…
VA: Alexandria nursing assistant charged with identity theft
Insider breaches — including insider wrongdoing — were down last year according to Verizon’s annual report and Protenus’s 2021 Breach Barometer for incidents involving health or medical data reported in the U.S. But “down” does not mean “gone.” Rogue employees are still a significant risk for entities, as James Cullum reports: An Alexandria certified nursing assistant…
TX: Gastroenterology Consultants, P.A. hit by ransomware in January, but patients not notified yet?
Back in December, this site reported on a ransomware incident affecting Gastroenterology Consultants, LTD in Nevada. They had been the target of Conti threat actors, and they reported the incident to HHS in January as impacting 2,500 patients. Yesterday,, I saw another listing for Gastroenterology Consultants, but this is Gastroenterology Consultants, P.A. in Houston, Texas….
Gary, Indiana targeted by ransomware attack
Riley Chloe reports that Gary, Indiana is trying to recover from a ransomware attack. All of its servers are now being restored and rebuilt. The FBI and the Department of Homeland Security were both alerted and a city spokesperson says they’re still investigating if anyone’s personal information was stolen. “If we discover that any information…
Jp: Two Salesforce incidents reportedly shut down online vaccination reservation systems, exposed other personal info
Updated May 18: See the Salesforce statement issued May 17 that says confirming that there was no data loss or breach involving the first incident described below. Yomiuri Shimbun reports: A failure in a cloud computing system provided by U.S.-based IT company Salesforce.com Inc. paralyzed COVID-19 vaccination reservation systems operated by local governments across Japan…