Marie Weidmayer reports: MSU will spend an estimated $2.9 million on identity theft protection in the wake of the data breach that exposed university records of about 400,000 people. According to a statement from MSU President Lou Anna K. Simon, MSU will provide credit monitoring and identity theft protection free of charge to everyone affected. “We have a reserve fund that…
Category: U.S.
Feds: Former call center employee pleads guilty to extortion demand for information stolen from Cincinnati company
WLWT reports: A Cincinnati man pleaded guilty after U.S. Attorney Benjamin Glassman said he stole data from a local company and demanded ransom. Carlos Ruiz-Rodriguez, 25, was a call center employee for two years. Glassman said he stole company schematics and client information and told the company he would release it if the company did…
Sagewood notifies 863 employees and residents of cyber attack
LCS Westminster Partnership IV, LLP d/b/a Sagewood, is reporting what they describe as a ransomware attack without any ransom demand: Sagewood, a retirement community located at 4555 E Mayo Blvd. in Phoenix, has notified 800 current and former residents and the Department of Health and Human Services of a cyber breach. Sagewood promptly investigated the…
Data breach exposed locations of oil industry explosives, handler credentials
Dell Cameron reports: A misconfigured storage device discovered by a security researcher in October left exposed thousands of internal files belonging to an explosives-handling company. The files, which have since been secured, reportedly included details about facilities in three U.S. states where explosives are stored. The leaky file repository belonged to Allied-Horizontal Wireline Services(AHWS), a leading wireline company…
OptumHealth New Mexico notifies 2,006 members of breach
On Nov. 17, OptumHealth New Mexico began notifying members that a flash drive, mailed by an unnamed vendor on September 16, was discovered on September 26 to have been lost in the postal mail. From their FAQ on the incident: The information contained on the flash drive included individuals’ name and a full or partial date of birth,…
AlphaBay vendor, IcyEagle, sentenced to four years and two months imprisonment
There’s a follow-up to a case previously noted on this site. From the USAO, Northern District of Georgia: Aaron James Glende a.k.a. IcyEagle has been sentenced to four years and two months’ imprisonment for access device fraud and aggravated identity theft. Glende sold stolen personally identifying information and login credentials on AlphaBay Market, a website…