Jonathan Greig reports: A cyberattack on a small city in Kansas has disrupted the government’s email, phone and online payment systems. Pittsburg — home to about 20,000 people along the state’s border with Missouri and Oklahoma — said it discovered the incident over the weekend. The attack caused an IT outage that limited government systems…
Category: U.S.
Mount Desert Island Hospital updates its breach disclosure again but still doesn’t reveal what data were leaked
On July 1, DataBreaches reported that Mount Desert Island Hospital (MDIH) in Maine notified HHS on June 30 that 24,180 patients had been affected by a breach between April 28 and May 7. The types of protected health information involved included name, address, date of birth, driver’s license/state identification number, Social Security number, financial account…
Law Firm Accused of Waiting More Than a Year to Inform Affected Parties About Data Breach
Riley Brennan reports: Los Angeles-based law firm Hill, Farrer & Burrill was slapped with a data breach class action over allegations it detected a data breach in March 2022 but waited over a year to inform affected individuals their personal information had been leaked. […] According to the complaint, Hill Farrer determined that cybercriminals gained…
More victims of MOVEit breach are revealed: Nuance discloses for covered entities (UPDATE 1)
Add yet one more business associate to those affected by the Clop attack on Progress Software MOVEiT. Nuance has disclosed that it was affected by the May attacks. Although no number was revealed, the Microsoft-owned technology firm stated it was disclosing on behalf of: Atrium Health, the Charlotte-based health care system giant. Catawba Valley Medical…
Caesars Entertainment confirms ransom payment, customer data theft
Sergiu Gatlan reports: Caesars Entertainment, self-described as the largest U.S. casino chain with the most extensive loyalty program in the industry, says it paid a ransom to avoid the online leak of customer data stolen in a recent cyberattack. Caesars discovered on September 7th that the attackers stole its loyalty program database, which stores driver’s…
Personal information of thousands of Sanford Health patients potentially compromised
Gretchen Hjelmstad reports: The imaging vendor Sanford Health uses for its mobile heart screen trucks, DMS Health Technologies, experienced a data security incident between March 27 and April 24, 2023. According to Sanford Health, patient information was potentially compromised including name, date of birth, date of service, physician name and exam type. Sanford Health is…