It looks like HHS followed up on a leak first reported by DataBreaches.net in May, 2018. At the time, this site noted that two MedEvolve clients had exposed data. One of them was Beverly Held, M.D. A researcher had found .dat files exposed without any login required and estimated that there were approximately 12,000 SSNs…
Category: U.S.
Hancock County school district hit by cyber attack, internet connectivity affected
Matt McKinney reports: Schools in the Community School Corporation of Southern Hancock County district were subject to a cyber attack over the last two days, primarily affecting internet connectivity for teachers and students. No personal information for students, families or staff was compromised, as officials believe it was a targeted attack focused on taking down…
Scholarship America notifies individuals of breach
There have been so many Blackbaud-related security notifications that my first thought was that one by Scholarship America would be more of the same. But it’s not. It’s another hack involving Microsoft Office 365 accounts, which has been a growing problem this year. From their press release yesterday: – Scholarship America, a nonprofit organization that manages…
Intel investigating breach after 20GB of internal documents leak online
Catalin Cimpanu reports: US chipmaker Intel is investigating a security breach after earlier today 20 GB of internal documents, with some marked “confidential” or “restricted secret,” were uploaded online on file-sharing site MEGA. The data was published by Till Kottmann, a Swiss software engineer, who said he received the files from an anonymous hacker who…
TX: Cyber attack affects Hudson ISD website
As noted previously on this site, there have recently been a number of attacks on school districts in eastern Texas. Here’s another report on the situation that links the attacks to some districts’ cloud-based hosting service. Grace Juarez reports: Hudson ISD’s website was down throughout the weekend and Monday after a cyber attack affected the…
Second Data Breach at Kentucky Unemployment System
Sarah Coble reports: Kentucky’s unemployment system appears to have suffered its second data breach in four months after a claimant reported being able to view another claimant’s personal data. The reporter of the alleged breach logged on to the Office of Unemployment Insurance’s (OUI) online system on July 27 to work on their unemployment application. While trying…