NEW YORK – New York Attorney General Letitia James today announced an agreement with Marymount Manhattan College (MMC), a private non-profit liberal arts college in New York City, to invest $3.5 million in data security to protect students’ online data. In 2021, MMC suffered a data breach that affected nearly 100,000 New Yorkers who were current…
Crown Point schools 2022 ransomware attack cost $1M to resolve
Adrian Martinez-De la Cruz reports that Crown Point Community School Corp. Superintendent Todd Terrill provided an update on the ransomware attack last November that cost the district about $1 million to resolve. The superintendent said the breach occurred after an employee fell for a phishing attack. The district decided to pay the attackers, and “a payment…
DHS Pushes for Common Cyber Incident Reporting Definitions
Jose Rascon reports: The Department of Homeland Security (DHS) has released a new report looking to wrangle the different avenues in which the Federal government and its agencies report cyber incidents in a more ‘reportable’ fashion. The report, titled “Harmonization of Cyber Incident Reporting to the Federal Government” and released on Sept. 19, comes as…
Hackers put over 2 million Pakistanis’ private data for sale after restaurant software breach
Daily Pakistan reports: More than 2 million Pakistani citizens are facing risk of data leak as hackers got access to a private company-made database used by hundreds of restaurants. The incident affected customers who gave their private data to restaurants for a treasure trove of personal information like credit cards, addresses and other bank details….
Air Canada says unauthorized group breached employee data, hacked internal system
Temur Durrani reports: Air Canada says an unauthorized group of people obtained access to its internal system, compromising the personal information of an unknown number of employees working for the country’s largest airline. In a brief statement on Wednesday afternoon, Air Canada spokesperson Peter Fitzpatrick said “certain records” were affected by the “limited” breach, without naming…
TissuPath’s data breach notice provides details about how they were attacked and their incident response
Mirage reports: TissuPath, a specialist pathology firm in Australia, has experienced a data breach due to a cyber security incident. The breach involved a third-party supplier attack, accessing pathology referral records kept in a backup storage drive. Read more at Mirage News. TissuPath has posted a security notice on its website that begins with an…