From the U.K.’s Information Commissioner’s Office (ICO): NHS Highland reprimanded for a “serious” data breach amongst those accessing HIV services ICO calls for higher standards when protecting data of people living with HIV Service providers could be fined or reprimanded for exposing sensitive data The Information Commissioner’s Office (ICO) has issued a reprimand to NHS Highland for…
Consumer lender TMX discloses data breach impacting 4.8 million people
Bill Toulas reports: TMX Finance and its subsidiaries TitleMax, TitleBucks, and InstaLoan have collectively disclosed a data breach that exposed the personal data of 4,822,580 customers. TMX is a public financial service that operates equities, fixed income, derivatives, and energy markets exchanges, with a business presence in the United States, Canada, the U.K., Australia, and…
Florida city water cyber incident allegedly caused by employee error
There is an update to a story posted on DataBreaches in 2021 about a scary-sounding attempt to hack and control the water treatment plant in Oldsmar, Florida. Today, Chris Teale reports that no, it wasn’t that at all. It was just an employee clicking on some wrong buttons before he informed his supervisor of his…
Attacked by Vice Society earlier this month, Lewis & Clark finds files with personal information have now been leaked
It appears that Lewis & Clark in Oregon has been the victim of a ransomware attack by Vice Society. An urgent notice on the college’s website currently says: Urgent LC Alert: Campus phone service and PioNet Guest Wifi are working. If you are unable to reach Campus Safety at 503-768-7777, call the backup number at…
Bits ‘n Pieces (Trozos y Piezas)
ES: Secondary education center hit by Stormous After several months out of the public eye, the pro-Russian Stormous Ransomware group reappeared in February. Now they have claimed an attack on a secondary education center, the Instituto De Educación Secundaria Ies Emilio Canalejo Olmeda (IESCO) in Cordoba, Spain. On March 30, Stormous listed the entity in…
Guam Memorial Hospital under review for potential HIPAA breach
Matsuki Hirayama reports: The unauthorized access into Guam Memorial Hospital’s network is undergoing a detailed review for a possible Health Insurance Portability and Accountability Act or HIPAA breach. The information came to light during the public hospital’s monthly board meeting Wednesday. GMH legal counsel Jeremiah Luther maintains that no patient or employee records were compromised, saying they got lucky….