A cyber-attack on the servers of the city of Bourg-Saint-Maurice took place this past weekend. Servers currently affected are those of tourism, Haute Tarentaise, and Séez. Le Dauphiné reports that the cybersecurity firm assisting with the investigation and recovery has found no theft of personal data (at least so far), but everything is encrypted. Although…
Cancer patients in the State of Washington had their sensitive records hacked and dumped. Have they been notified?
On February 15, yours truly created an entry in the worksheet I maintain for tabulating U.S. incidents involving health data or protected health information. The entry listed “Capital Medical Center” in Washington as the breached entity, the date of disclosure as February 15, 2021, and the type of incident as a claimed ransomware attack by Avaddon…
CZ: Three weeks after ransomware attack, Olomouc continues to recover while still being threatened by threat actors
On April 9, DataBreaches.net noted a report that the municipality f Olomouc had suffered a cyber attack on April 7. There were almost no details other than the municipality estimated it might take two weeks to fully restore services. Since then, a few more details have emerged. We now know that it was the Avaddon…
Maine government website displayed mental health patients’ confidential information
Matthew Stone reports: A state agency displayed confidential information about patients of Maine mental health and addiction treatment agencies and group home residents on a public website, a Bangor Daily News review found. At least 20 documents on the Maine government website contained names and, in some cases, addresses, dates of birth and phone numbers,…
No need to hack if it’s leaking, Wednesday edition: Wyoming Department of Health
From the Wyoming Department of Health, a report involving another GitHub leak: Exposure of Laboratory Test Result Data Described April 27, 2021 The Wyoming Department of Health (WDH) is announcing a mistaken exposure of laboratory test result data involving the health information of thousands of Wyoming residents and others, as well as describing its plan…
Ransomware gang targets Microsoft SharePoint servers
Catalin Cimpanu reports: The group behind the attacks targeting SharePoint servers is a new ransomware operation that was first seen at the end of 2020. The group is tracked by security vendors under the codenames of Hello or the WickrMe ransomware—because of its use of Wickr encrypted instant messaging accounts as a way for victims to reach out and…