Becky Sullivan reports that the Kronos ransomware incident continues to disrupt payroll for employees around the country: A month-old ransomware attack is still causing administrative chaos for millions of people, including 20,000 public transit workers in the New York City metro area, public service workers in Cleveland, employees of FedEx and Whole Foods, and medical…
Search Results for: ransomware
The definitions of “recently” and “discovered” leave a lot to be desired
In March, 2021, Family Health Services MN d/b/a Entira Family Clinics notified the Maryland Attorney General’s Office that they had been impacted by the Netgain ransomware attack that affected more than one dozen covered entities and more than 1 million patients. Entira’s external counsel’s letter of March 1, 2021, identified the dates upon which Netgain…
Kronos hackers stole personal info of Metro-North workers, MTA says
David Meyer reports: Ransomware hackers who breached the network of MTA timeclock provider Kronos made off with the personal information of several current and former Metro-North employees, transit leadership said Thursday. “Kronos recently informed us that some files containing personal information of some current and former MTA employees at one of our agencies – Metro-North Railroad –…
OH: Memorial Health System notifies 216,478 patients of malware incident last July
In November, Marietta Area Health Care Inc. dba Memorial Health System notified HHS of a breach. The number affected was submitted as 501 — a number that this site often interprets as just a marker to show that the entity knows there was more than 500 patients to notify, but hasn’t yet figured out exactly…
Ca: Visalia Unified School District notifying employees and students about 2021 data breach
Reggie Ellis reports: Tulare County’s largest school district is notifying some of its 3,000 employees and 32,000 students that some of their personal information has been compromised. On Dec. 30, Visalia Unified School District (VUSD) announced certain district-issued email accounts were illegally accessed during a data breach between Jan. 1 and June 3, 2021. VUSD…
Who is the Network Access Broker ‘Wazawaka?’
Brian Krebs reports: In a great many ransomware attacks, the criminals who pillage the victim’s network are not the same crooks who gained the initial access to the victim organization. More commonly, the infected PC or stolen VPN credentials the gang used to break in were purchased from a cybercriminal middleman known as an initial…