Mark Rasch of Korhman Jackson & Krantz writes: A consistent pattern emerges in data breach and cyber-attack cases when companies turn to their insurers for coverage after such incidents. Whether they possess specialized cyber insurance or not, insurers often decline claims, citing various reasons such as failure to provide timely notice, failure to mitigate costs,…
PHI Database: Portal for Health Informatics – IIIT Delhi shared on Cyber Crime Forum
Seen on CloudSEK: CloudSEK’s contextual AI digital risk platform XVigil has discovered a post on an English speaking cybercrime forum, sharing a database of PHI-IIIT Delhi for Forum credits. A total of 82 Databases were compromised and leaked data. Read more at CloudSEK.
SolarWinds’ $26 Million Deal in Russian-Hack Suit Gets Final Nod
Christopher Brown reports: SolarWinds Corp. will pay $26 million to settle an investor suit alleging it failed to disclose security vulnerabilities before a massive cyberattack, under an agreement given final approval by a federal court. Investors alleged the technology company misled them about its security practices before announcing a suspected Russian hack in late 2020, causing the…
Discovery at Home notifies patients after phishing incident
Discovery at Home provides senior home healthcare services to seniors in Florida and Texas. On July 31, they issued a website notice about a phishing incident they discovered on June 1. As they describe it, the scheme resulted in the transmittal of personal health information to an unauthorized third-party sender. Elements of personal information that may…
Gallivan notifies University of Guelph students of Fortra breach 4 months later
Daniel Caudle reports: The provider of health, dental, and wellness benefits at the University of Guelph (U of G) has begun notifying students of a data breach which included access to personal information. A post on the Central Student Association’s website says Gallivan, the provider of those plans, began sending notifications via email this week. CTV News…
MHMR Authority of Brazos Valley provides notice of ransomware attack last November (1)
On December 22, 2022 DataBreaches added MHMR Authority of Brazos Valley to our non-public breach worksheet. Based on information at that time from Hive threat actors, it appeared that the non-profit Texas mental health and substance abuse treatment provider’s files had been locked on November 5. Their listing on Hive’s leak site was a sure…