Clark University in Massachusetts began notifying some students whose personal information, including Social Security Numbers, were in an employee’s email account that had been accessed. According to their notification dated July 20, the university’s investigation revealed that an unauthorized individual could have accessed the employee’s email account between March 19 and March 23rd. From the wording…
Category: U.S.
Follow-up: More than 1200 people could receive settlements after Flowers Hospital data breach
WTVY reports that if a federal judge approves a proposed settlement of a class action lawsuit, more than 1200 patients of Flowers Hospital in Alabama might receive reimbursement for credit monitoring expenses, payment for up to four hours of lost wages dealing with the breach, and a refund of any interest lost due to tax refund…
If you shopped at these 15 stores in the last year, your data might have been stolen
Dennis Green and Mary Hanbury report: At least 15 separate security breaches occurred at retailers from January 2017 until now. Many of them were caused by flaws in payment systems, either online or in stores. Data breaches are on the rise for both retailers and other businesses. A recent report published by cybersecurity firm Shape…
Some Kanawha County employees receive data breach notices after ComplyRight breach
Rick Steelhammer reports: Some Kanawha County employees whose health insurance coverage is issued through the county may have had personal information accessed during a data breach of the website of a cloud-based human resources servicing firm. Florida-based ComplyRight, which offers an array of HR-related data services to small businesses and government organizations, informed Kanawha County…
NorthStar Anesthesia notifies patients after employee email accounts compromised
Between May 23 and 24, 2018, NorthStar learned of an email phishing campaign that resulted in the compromise of certain employees’ email credentials. NorthStar immediately took steps to respond and commenced an investigation to determine the nature and scope of the incident, as well as determine what information may be affected. The investigation included working…
Short Circuit: How a Robotics Vendor Exposed Confidential Data for Major Manufacturing Companies
The UpGuard Cyber Risk team can now disclose that sensitive documents for over a hundred manufacturing companies were exposed on a publicly accessible server belonging to Level One Robotics, “an engineering service provider specialized in automation process and assembly for OEMs [original equipment manufacturers], Tier 1 automotive suppliers as well as our end users.” Among…