On May 10, DataBreaches.net broke the story of a medical collection agency breach involving American Medical Collection Agency. The breach had been discovered by Gemini Advisory, who informed this site that they had found approximately 200,000 patients’ payment card info for sale on a well-known marketplace. The cards had apparently been compromised between September, 2018…
Health Quest phishing incident in 2018 results in notification to patients, but why such a long delay?
Today’s Poughkeepsie Journal has a news story about a phishing incident that appears to have been discovered in July, 2018 that affected an unspecified number of Health Quest patients. From the available information, it sounds like Health Quest first discovered email attachments in January, 2019, and then it took them until April 2, 2019 to…
NY: Broome County security breach put employees’ and clients’ personal information at risk
Katie Sullivan Borrelli reports: Broome County says an unauthorized individual may have had access to the personal information of county employees and individuals who receive the county’s care, including their Social Security numbers, medical records and bank account information. In a news release sent on its behalf by Mullen Coughlin LLC, of Wayne, Pennsylvania, the…
GandCrab ransomware operation says it’s shutting down
Does Hallmark have a card suitable for this? Catalin Cimpanu reports: The creators of the GandCrab ransomware announced yesterday they were shutting down their Ransomware-as-a-Service (RaaS) operation, ZDNet has learned. […] “We successfully cashed this money and legalized it in various spheres of white business both in real life and on the Internet,” the GandCrab…
UK: Leicester City FC reveal details of ‘criminal online security breach’ related to online shop
Sam Dimmer reports: Leicester City say users of their online store had their personal and financial details compromised following a security breach. The club say the breach affected some users between April 23 and May 4. In a statement released today they say that supporters whose details were compromised were contacted immediately and told what…
Lewes Public Works customers may have had their information stolen
Rob Sussman reports: The Lewes Board of Public Works announced to customers this week that their information may have been compromised as part of a hacking attempt of their customer information system. Here’s the full statement sent to customers: “May 29, 2019 Dear Customer, We are writing to you because of a potential threat to…