This week, DataBreaches.net reported on a new dedicated leak site and threat actors who had hit Clover Park School District in Washington. The same threat actors, whose name is not even clear (are they PayOrGrief or Grief_List or…) have listed three other victims on their site who presumably did not pay their ransom demands. One…
UMD-Baltimore updates Accellion breach notification after finding PII and PHI involved
On April 1, DataBreaches.net reported that the University of Maryland, Baltimore was one of the educational entities impacted by the CLOP hack and exfiltration of Accellion client data, but that neither UMD nor Accellion even knew that until the last week in March. This week, the university issued an updated press release that reveals that…
INM seeking exploratory talks over legal claims following data breach
Arthur Beesley reports: Independent News & Media [INM] has signalled its interest in exploratory talks over legal claims lodged following the data breach scandal that rocked the group when businessman Denis O’Brien was its main shareholder. The claims centre on the searching of emails in 2014 that belonged to lawyers, senior journalists, former INM executives…
US soldiers accidentally leak nuclear secrets via study apps — report
Alex Berry reports: Troops on US bases in Europe housing nuclear weapons have been using publicly accessible online flashcard apps to remember long and complex security protocols, the investigative website Bellingcat revealed on Friday. The military personnel turned to sites such as Quizlet, Chegg Prep and Cram to memorize codes, jargon and even the status of nuclear…
Iowa Law Safeguards Insurance Consumers’ Private Data
Katya Maruri reports: In a move to defend insurance consumers’ private information, Iowa Gov. Kim Reynolds has enacted a bill to set new standards related to data security, investigations and cybersecurity events for insurance companies. The bill, known as HF 719, came about in response to several major data breaches involving large insurers that exposed and compromised the sensitive…
Hoboken Radiology reveals breach of imaging server that began in 2019
Hoboken Radiology LLC in New Jersey issued a press release yesterday about an incident that began in June, 2019. The full text of the release is below the separator. DataBreaches.net has sent an inquiry to the practice asking them who informed them in November — was it law enforcement, a vendor, a researcher, or their…