Paul Sisson reports: Scripps Health announced Tuesday that it has begun notifying nearly 150,000 individuals that their personal information was stolen by hackers during the ransomware attack that hit the local health care giant on May 1. In a statement, San Diego’s second-largest medical provider says that it is “beginning to mail notification letters to…
Kenyan arrested in Qatar first targeted by phishing attack
Jon Gambrell reports: A Kenyan security guard now facing charges in Qatar after writing compelling, anonymous accounts of being a low-paid worker there found himself targeted by a phishing attack that could have revealed his location just before his arrest, analysts say. While analysts from Amnesty International and Citizen Lab said they were unable to…
ZA: President Ramaphosa signs Cyber Crimes Bill into law
Admire Moyo reports: The Cyber Crimes Bill, which seeks to bring SA’s cyber security laws in line with the rest of the world, has just been signed into law by president Cyril Ramaphosa. According to law firm Werksmans Attorneys, this Bill, which is now an Act of Parliament, creates offences for and criminalises, among others,…
ND: Data Security Breach at Ralph Engelstad Arena
Valley News Live reports: Hundreds of employees at the Ralph Engelstad Arena in Grand Forks are victims of a data security breach. In a message to employees Tuesday, Jody Hodgson, General Manager of the Ralph, says the incident happened in December 2020 and resulted in unauthorized access to some employee information. 318 employees are affected,…
Justice Department Announces Court-Authorized Seizure of Domain Names Used in Furtherance of Spear-Phishing Campaign Posing as U.S. Agency for International Development
WASHINGTON – On May 28, pursuant to court orders issued in the Eastern District of Virginia, the United States seized two command-and-control (C2) and malware distribution domains used in recent spear-phishing activity that mimicked email communications from the U.S. Agency for International Development (USAID). This malicious activity was the subject of a May 27 Microsoft…
20/20 Eye Care Network and Hearing Care Network notify 3,253,822 health plan members of breach that deleted contents of AWS buckets
20/20 Eye Care Network, Inc. is a managed vision care company in Florida that offers administrative services to health plans. 20/20 Hearing Care Network expands those services into hearing care. On May 28, 20/20’s Chief Compliance Officer notified the Maine Attorney General’s Office of an incident in which their Amazon AWS S3 buckets were accessed…