Both the Oregon and Louisiana departments of motor vehicles have become victims of the MOVEit hack and millions of drivers and vehicle owners have had their personal information stolen. Onur Demirkol reports that the Oregon DMV fell prey to the MOVEit hack: An estimated 3.5 million driver’s license and identity card details were exposed when…
Search Results for: HSE attack
State governments among victims of MoveIT Transfer breach
Alexander Culafi reports: Illinois, Minnesota and Missouri state governments are among a growing list of organizations attacked via a critical flaw in Progress Software’s MoveIT Transfer product. Progress Software on May 31 detailed an SQL injection bug in its managed file transfer (MFT) software MoveIt Transfer. Progress urged customers to immediately apply mitigations for the…
CrowdStrike: Threat actors shifting away from ransomware
Alexander Culafi reports: Threat actors are shifting away from traditional ransomware and toward malware-free cyber attacks, according to a new report from CrowdStrike. The cybersecurity vendor this week published its “2023 Global Threat Report,” which annually compiles CrowdStrike’s research related to cybercrime, or “eCrime,” from the previous year. Major topics covered in the 2023 report include malware-free…
Class action lawsuits following breaches in the medical sector: do they help or make things worse?
In their predictions for 2023, the very first prediction by Mary T. Costigan, Jason C. Gavejian & Joseph J. Lazzarotti of JacksonLewis involved healthcare and medical data security and tracking: 2023 will see a significant increase in the number of lawsuits and perhaps OCR compliance reviews relating to medical information privacy and HIPAA, including new…
November settlements in some class action lawsuits involving health information
There were several settlements in November involving class action lawsuits against entities where the breach involved protected health information or health data. Here’s a brief recap of them: Ambry Genetics agreed to pay $12.25 million to resolve claims that a 2020 data breach compromised consumer health data and other identifiers. The settlement benefits patients whose…
ClearBalance, Bricker & Eckler settle data breach lawsuits involving patient data
To follow up on two previously reported breaches involving protected health information, here are two class action settlements that involve business associates: CSI Financial Services aka ClearBalance In July 2021, DataBreaches reported a breach at CSI Financial Services, aka ClearBalance, a firm that services loans made by hospitals and providers to patients who need to…