UPDATE of Feb. 10, 2023: Regal Medical Group notified HHS that their incident impacted 3,300,638 patients. Original Post: It may be the weekend, but there’s no rest for the weary when it comes to tracking attacks on the healthcare sector. Here are four more incidents you may not have heard about already: Cardiovascular Associates Cardiovascular…
Taiwan car rental platform iRent plans compensation for data leak victims
Matthew Strong reports: Car rental and carshare platform iRent will prepare a compensation package for 400,000 clients deemed at risk from a recent leakage of private data, reports said Saturday (Feb. 4). The service, which is managed by Hotai Motor, the group manufacturing Toyota vehicles in Taiwan, was accused of having left users’ personal information…
Iran crew stole Charlie Hebdo database, says Microsoft
Jessica Lyons Hardcastle reports: Microsoft believes the gang who boasted it had stolen and leaked more than 200,000 Charlie Hebdo subscribers’ personal information is none other than a Tehran-backed gang. On Friday, Redmond’s Digital Threat Analysis Center (DTAC) attributed the cyber-heist to Iran’s Neptunium, which the US Department of Justice tracks as Emennet Pasargad. The…
Massive ESXiArgs ransomware attack targets VMware ESXi servers worldwide; more than 500 systems affected already
Sergiu Gatlan reports: Admins, hosting providers, and the French Computer Emergency Response Team (CERT-FR) warn that attackers actively target VMware ESXi servers unpatched against a two-year-old remote code execution vulnerability to deploy ransomware. Tracked as CVE-2021-21974, the security flaw is caused by a heap overflow issue in the OpenSLP service that can be exploited by unauthenticated…
Edward Jones Sues To Stop Fired Advisor From Taking ‘Five-Star’ Clients
Jacqueline Sergeant reports: Edward Jones is seeking a temporary restraining order and injunctive relief in federal court against a former financial advisor who the company alleged stole confidential and trade secret information of “five-star” clients prior to his termination. The complaint, filed in the U.S. District Court for the Central District of Illinois on January…
Hackers who breached ION say ransom paid; company declines comment
Raphael Satter reports: The hackers who claimed responsibility for a disruptive breach at financial data firm ION say a ransom has been paid, although they declined to say how much it was or offer any evidence that the money had been handed over. ION Group declined to comment on the statement. Lockbit communicated the claim…