Montefiore Medical Center in New York is notifying patients of yet another insider-wrongdoing breach. Read their press release below and then the comments after it. April 13, 2021 /PRNewswire/ — Today, Montefiore Medical Center is notifying some patients about a security breach involving information illegally accessed by a former employee. Categories of personal information accessed varied…
Category: U.S.
Baltimore County Public Schools takes responsibility for data breach that affected teachers
Tim Tooten reports: More than 2,500 of Baltimore County Public School system employees have had their personal information compromised and the district said it’s their fault. It follows a number of technology issues the school system has been dealing with since November. School officials said they learned about the technology failure in January, but letters…
Lawsuit accuses Pennsylvania addiction treatment center of failing to protect patient information from data hack
In February, HHS added an incident to their public breach tool involving Pennsylvania Adult & Teen Challenge, an addiction treatment center. In July, 2020, PPATC had discovered that an unauthorized individual had accessed some employee email accounts. A forensic investigation could not determine what information in those accounts had been accessed, and they wound up…
Update on Cuyahoga Metropolitan Housing Authority ransomware incident
As reported previously, on February 10, Cuyahoga Metropolitan Housing Authority became a victim of the DoppelPaymer ransomware operators. SuspectFile had noted that the threat actors were already dumping data less than two weeks later. Counsel to CMHA recently notified the Maine Attorney General’s office that a total of 189,008 people were impacted by the attack….
ParkMobile Breach Exposes License Plate Data, Mobile Numbers of 21M Users
Brian Krebs reports: Someone is selling account information for 21 million customers of ParkMobile, a mobile parking app that’s popular in North America. The stolen data includes customer email addresses, dates of birth, phone numbers, license plate numbers, hashed passwords and mailing addresses. KrebsOnSecurity first heard about the breach from Gemini Advisory, a New York City based…
Florissant dialysis center faces class-action lawsuit after I-Team investigates
PJ Randhawa reports: A popular Florissant dialysis clinic is the subject of a class-action lawsuit after an I-Team report uncovered the facility “lost” the medical records of up to 60 patients. In July, the I-Team found dozens of private medical records for DaVita Dialysis patients dumped behind an abandoned building in north St. Louis. We…