Shahla Farzan reports: Ransomware attackers have stolen data from a third-party vendor that supplies utility equipment to Ameren Missouri power plants. Dozens of data files from Ohio-based LTI Power Systems appeared on a ransomware server in late February, including equipment diagrams and schematics from two Ameren Missouri facilities. No customer information appears to have been…
Category: U.S.
University of Utah Health notifies patients of phishing attacks that began in January
The University of Utah Health is notifying patients whose protected health information was in some employees’ email accounts after they fell for a phishing attack. The following is a notice posted on their website March 20th: We are committed to protecting the confidentiality of our patients’ information. Regrettably, this notice is regarding an incident involving…
Oregon DHS notifies public of data breach
KTVZ reports: The Oregon Department of Human Services announced Friday that it uncovered a “phishing” incident on March 6 that affected one staff member’s e-mail. […] The security and confidentiality of private health information is critical to the Department of Human Services. While the department cannot confirm that any clients’ personal information was acquired from…
Golden Valley Health Centers notifies patients after employee email account comprised
From their press release earlier today: Golden Valley Health Centers has become aware of a data security incident that may have resulted in the inadvertent exposure of patients’ health information. Although at this time, there is no evidence that patient information was actually accessed or viewed, or any indication of anyone’s information being misused, Golden…
Tandem Diabetes Care notifies customers of phishing incident
Update: This incident was reported to HHS on March 17 as impacting 140,781 patients. Their press release: Tandem Diabetes Care, Inc. (“Tandem”) is committed to protecting the confidentiality and security of our customers’ information. Regrettably, this notice is to inform our customers of a recent phishing incident that may have involved some customer information. What…
Financial companies leak 425GB in company, client data through open database
Charlie Osborne reports: An open database is the source of a data leak leading to the exposure of 425GB in sensitive documents belonging to financial companies. On Tuesday, vpnMentor researchers led by Noam Rotem said the database appears to be connected to MCA Wizard, a now-defunct app that appears to have been developed by Advantage Capital…