On April 1, DataBreaches.net reported that the University of Maryland, Baltimore was one of the educational entities impacted by the CLOP hack and exfiltration of Accellion client data, but that neither UMD nor Accellion even knew that until the last week in March. This week, the university issued an updated press release that reveals that…
INM seeking exploratory talks over legal claims following data breach
Arthur Beesley reports: Independent News & Media [INM] has signalled its interest in exploratory talks over legal claims lodged following the data breach scandal that rocked the group when businessman Denis O’Brien was its main shareholder. The claims centre on the searching of emails in 2014 that belonged to lawyers, senior journalists, former INM executives…
US soldiers accidentally leak nuclear secrets via study apps — report
Alex Berry reports: Troops on US bases in Europe housing nuclear weapons have been using publicly accessible online flashcard apps to remember long and complex security protocols, the investigative website Bellingcat revealed on Friday. The military personnel turned to sites such as Quizlet, Chegg Prep and Cram to memorize codes, jargon and even the status of nuclear…
Iowa Law Safeguards Insurance Consumers’ Private Data
Katya Maruri reports: In a move to defend insurance consumers’ private information, Iowa Gov. Kim Reynolds has enacted a bill to set new standards related to data security, investigations and cybersecurity events for insurance companies. The bill, known as HF 719, came about in response to several major data breaches involving large insurers that exposed and compromised the sensitive…
Hoboken Radiology reveals breach of imaging server that began in 2019
Hoboken Radiology LLC in New Jersey issued a press release yesterday about an incident that began in June, 2019. The full text of the release is below the separator. DataBreaches.net has sent an inquiry to the practice asking them who informed them in November — was it law enforcement, a vendor, a researcher, or their…
Caravus impacted by Netgain Technology breach because vendor failure to destroy legacy data
I’ve continued to add updates to a post about the Netgain Technology breach. Keep in mind that the ransomware incident occurred in November, 2020, and since January, we have seen entities disclosing the incident. But one disclosure today is somewhat frustrating to read — and not just for the delay in notification, but for the…