Bleeping Computer reports that Verizon has notified the Maine Attorney General’s Office of an insider data breach affecting 63,206 employees. According to their sample notice of what was sent to those affected, an employee gained unauthorized access to employee data on September 21, 2023, although Verizon didn’t discover the problem until December. The types of…
Millions of hacked toothbrushes used in Swiss cyber attack (1)
Andy Cuthbertson reports: Hackers have infected millions of smart toothbrushes with malware in order to carry out a massive cyber attack against a Swiss company, according to reports. The internet-connected toothbrushes were linked together in something known as a botnet in order to perform a distributed denial of service (DDoS) attack, which overloads websites and servers with…
Lawsuits Involving GoAnywhere Data Breach Consolidated at One Florida Federal Court
The ransomware gang known as Clop created massive headaches for numerous entities with attacks involving the exploitation of vulnerabilities in file transfer software. Since December 2020, the same gang exploited vulnerabilities in Accellion, Fortra’s GoAnywhere software, and Progress Software’s MOVEit software. Christopher Brown reports a litigation update in cases stemming from the GoAnywhere breach disclosed…
Two hosting companies in Romania had what appear to be unrelated breaches. Did either one ever issue a public notice? (2)
In April 2023, DataBreaches reported on an alleged incident involving TIC Hosting in Romania. No one from TIC Hosting ever responded to inquiries from this site, and inquiries to the data protection regulator for the country indicated that TIC Hosting had never reported any data protection incident to them. And that seemed to be the…
HHS’ Office for Civil Rights Settles Malicious Insider Cybersecurity Investigation for $4.75 Million
Today, the U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR), announced a settlement with Montefiore Medical Center, a non-profit hospital system based in New York City for several potential violations of the Health Insurance Portability and Accountability Act (HIPAA) Security Rule. OCR is responsible for administering and enforcing health information…
Ca: Hamilton’s Paramedic Service mistakenly sent patient info to wrong hospitals
Roger Collins reports: The Hamilton Paramedic Service says it has been mistakenly sending the personal information of some of its patients to the wrong hospital. Over the last four years, according to the municipal healthcare service, some paramedics have accidentally selected the incorrect hospital when submitting a patient’s records in correspondence to where they were…