Now what happened here? The Sodinokibi (“REvil”) ransomware operators have a new post that seems to claim that one of their victims was defrauded by a recovery company to the tune of $5.5 million. Vard Group, a Norwegian unit of shipbuilder Fincantieri SpA, was attacked in June 2020. But what happened next? It sounds like the…
OH: Stark Summit Ambulance notified patients and employees of data breach
Ohio-based Stark Summit Ambulance has disclosed a data security incident impacting employees and patients. On May 28, 2020, the firm learned of unusual activity involving one Stark Summit Ambulance employee email account. Over the next few months, as they continued investigating, they discovered more employee email accounts that had been compromised. By the end of July,…
Government software provider Tyler Technologies appears to have been hit by RansomExx ransomware – report
Lawrence Abrams reports: Leading government technology services provider Tyler Technologies has suffered a ransomware attack that has disrupted its operations. Tyler Technologies is one of the largest U.S. software development and technology services companies dedicated to the public sector. Read more on BleepingComputer.
Data breach at New York Sports Clubs owner exposed customer data
Zack Whittaker reports: Town Sports International, the parent company of New York Sports Clubs and Christi’s Fitness gyms, is mopping up after a security lapse exposed customer data. Security researcher Bob Diachenko received a tip from a contact, Sami Toivonen, about an unprotected server containing almost a terabyte of spreadsheets representing years of internal company…
Nigerian Man Sentenced to Three Years in Prison for Computer Hacking Scheme that Targeted Government Employees
Almost one year after a Nigerian national was extradited from Canada and charged with defrauding vendors of office products by “phishing” e-mail login information from government employees, Olumide Ogunremi, a/k/a “Tony Williams,” was sentenced in federal court in Newark. The sentence was announced by the U.S. Attorney’s Office for the District of New Jersey. Ogunremi…
HIPAA Business Associate Pays $2.3 Million to Settle Breach Affecting Protected Health Information of Over 6 million Individuals
A second big settlement from HHS this week (you can find the first one here). HHS’s press release concerning a case that was previously reported on this site in 2014 follows. The incident also resulted in a class action lawsuit that was settled in 2019. CHSPSC LLC, (“CHSPSC”) has agreed to pay $2,300,000 to the…