Munson Healthcare in Michigan has published notice of a data breach: Munson Healthcare became aware of a recent data security incident where certain employee email accounts were accessed by an unauthorized third-party. Upon learning of this issue, Munson Healthcare commenced a prompt and thorough investigation, working closely with external cybersecurity professionals. After an extensive forensic…
Nigerian man arrested 3 years after $850,000 stolen from Boulder Valley School District
Dara Bitler reports: The Boulder County Sheriff’s Office says a Nigerian man has been arrested more than three years after $850,000 was stolen from the Boulder Valley School District in an email scam. According to the arrest affidavit, Sherifdeen Mogaji, 39, was arrested on February 21 and booked into the Boulder County Jail on suspicion of theft…
Tennessee Orthopaedic Alliance notifies more than 81,000 patients after discovering two employee email accounts had been compromised
Tennessee Orthopaedic Alliance (TOA) recently notified more than 81,000 patients after an unknown party gained access to an employee’s email account. TOA first detected unusual activity in the account on October 18, 2019. A forensic investigation determined that data containing former and current patients’ personal or protected health information contained within two email accounts may…
Transmit Security, Authentication Company Used by Banks, Hacked
Joseph Cox reports: This week a cybersecurity company called Transmit Security, that focuses on providing corporate clients with tools to securely log users into different services, notified customers of a data breach at the firm. The breach impacted over a thousand email addresses, passwords, phone numbers, and other sensitive information, according to a researcher mentioned…
Facial-Recognition Company That Works With Law Enforcement Says Entire Client List Was Stolen
Betsy Swan reports: A facial-recognition company that contracts with powerful law-enforcement agencies just reported that an intruder stole its entire client list, according to a notification the company sent to its customers. In the notification, which The Daily Beast reviewed, the startup Clearview AI disclosed to its customers that an intruder “gained unauthorized access” to its list…
Rady’s Children’s Hospital notifies patients whose data were accessed via an open port
Rady’s Children Hospital in San Diego has been notifying patients whose information was accessed without authorization via an open port on the Internet. According to their notification, reproduced below, the unauthorized access first occurred on June 20, 2019, and was discovered on January 3, 2020. They do not explain how they first became aware of…