Catalin Cimpanu has an update to a situation first reported on DataBreaches.net last week. The operators of the DopplePaymer ransomware have leaked a large collection of files from the Illinois Office of the Attorney General after negotiations have broken down and officials refused to pay a ransom demand, The Record has learned. Perhaps the most interesting…
Category: U.S.
Departing lawyers who copied firm’s databases may be liable for unfair business practices, top state court says
On April 15, Debra Cassens Weiss reported: Departing lawyers who downloaded a “treasure trove” of proprietary materials from their Boston law firm may be liable for unfair or deceptive business practices, the Massachusetts Supreme Judicial Court has ruled. The court ruled for the Governo Law Firm in its lawsuit against a group of nonequity partners…
First Horizon discloses data security breach
Paul Davis reports: First Horizon in Memphis, Tenn., disclosed that a number of online customer bank accounts were targeted by a data security breach. The $87.5 billion-asset company said in a regulatory filing Wednesday that it first learned of the breach this month. Read more on Amercan Banker
DigitalOcean says customer billing data accessed in data breach
Zack Whittaker reports: DigitalOcean has emailed customers warning of a data breach involving customers’ billing data, TechCrunch has learned. The cloud infrastructure giant told customers in an email on Wednesday, obtained by TechCrunch, that it has “confirmed an unauthorized exposure of details associated with the billing profile on your DigitalOcean account.” The company said the…
Experian API Exposed Credit Scores of Most Americans
Brian Krebs reports: Big-three consumer credit bureau Experian just fixed a weakness with a partner website that let anyone look up the credit score of tens of millions of Americans just by supplying their name and mailing address, KrebsOnSecurity has learned. Experian says it has plugged the data leak, but the researcher who reported the finding says…
Cancer patients in the State of Washington had their sensitive records hacked and dumped. Have they been notified?
On February 15, yours truly created an entry in the worksheet I maintain for tabulating U.S. incidents involving health data or protected health information. The entry listed “Capital Medical Center” in Washington as the breached entity, the date of disclosure as February 15, 2021, and the type of incident as a claimed ransomware attack by Avaddon…