It appears that AspenPointe, a Colorado provider of outpatient and inpatient crisis ,mental health, substance abuse, and behavioral services across the lifespan, is notifying employees and clients of a cyberattack that resulted in exfiltration of data. In a notice on their web site, which appears addressed more to employees than clients, they write: As you…
Category: U.S.
U.S. Supreme Court to Weigh Anti-Hacking Law’s Limits on Access
Andrea Vittorio reports: The U.S. Supreme Court is set to hear oral argument Nov. 30 over the scope of an anti-hacking law in a case that has implications for cybersecurity research, and other situations where computer access is in question. The case, Van Buren v. United States, involves whether people who misuse their authorized access can be…
Networking equipment vendor Belden discloses data breach
Catalin Cimpanu reports: American networking equipment vendor Belden said it was hacked in a press release published earlier this week. Belden says the security breach took place after hackers gained access to a limited number of its file servers. Read more on ZDNet.
Two more k-12 school districts allegedly hit by ransomware threat actors
Spring Independent School District in Houston, Texas is closed for Thanksgiving week, but I wonder if any of their staff are working anyway in response to a claimed ransomware attack by Egregor threat actors. There is no date on Egregor’s site to show when they claim to have locked up the district’s files. And they…
Service provider to fertility clinics discloses malware attack
A press release from US Fertility (“USF”) follows. The Center for Fertility and Gynecology in California is not listed among USF entities in the press release. I mention that because the Center for Fertility and Gynecology still has not posted anything on their site or issued any press release about a ransomware attack that NetWalker…
Fairchild Medical Center server was exposing patient information for 4.5 years until a security firm alerted them
Ugh. Fairchild Medical Center had a misconfigured server exposing PHI from December 16, 2015 until they were alerted to the problem in late July by an unnamed security company who discovered the exposure. Here’s their press release, below. Note that this does not (yet) appear on HHS’s breach tool. YREKA, Calif., Nov. 25, 2020 /PRNewswire/ — In…