Lawrence Abrams reports: The Springfield Public Schools district in Massachusetts has become the victim of a ransomware attack that has caused the closure of schools while they investigate the cyberattack. Springfield is the third largest school district in Massachusetts with over 25,000 students, 4,500 employees, and more than sixty schools. Due to the COVID-19 pandemic,…
UK: Wisepay: School payments service hit by cyber-attack
BBC reports: Parents who made payments to UK schools in recent days via the Wisepay service have been warned their card details have been compromised. Wisepay said a hack of its website meant an attacker was able to harvest payment details between 2 and 5 October via a spoof page. Attempted payments to about 300…
Hall County, Georgia reports ransomware attack
Hall County first posted a notice about a ransomware attack on October 7. Since then, they have posted updates on their site, including the restoration of their phone services. Nothing has been revealed about who the attackers might be or what any ransom demand might have been. Thanks to @Chum1ng0 for submitting this link.
Dr Lal PathLabs, one of India’s largest blood test labs, exposed patient data
Zack Whittaker and Manish Singh report: Dr Lal PathLabs, one of the largest lab testing companies in India, left a huge cache of patient data on a public server for months, TechCrunch has learned. The lab testing giant, headquartered in New Delhi, serves some 70,000 patients a day, and quickly became a major player in testing…
Medical data of 150 Toronto hospital patients allegedly used to extort money from company
Katherine DeClerq reports: A Toronto hospital says that roughly 150 patients have been impacted by a data breach after a third-party employee allegedly stole medical reports in an effort to extort money from their company after being let go. According to a letter sent on Sept. 30 by a privacy and information access specialist at Unity…
Blackbaud Data Breach: Non-Profit Foundations (Part One)
Marco A. De Felice aka @amvinfe has begun a series of articles on the Blackbaud breach. He begins with Blackbaud’s initially inaccurate claims that no Social Security numbers, bank account data, or sensitive details had been accessed and exfiltrated. As most people know by now, Blackbaud had to issue an update to its original notification,…