Mario Casayuran reports: The database of the Unified Student Financial Assistance System for Tertiary Education (UNIFAST) has been breached by hackers. […] The data breach committed last March exposed the personal data of more than one million Tertiary Education Subsidy (TES) applicants, Gatchalian said. He said the TES database containing the private data of 1,130,899…
Search Results for: ransomware
Breaches Must be Reported No Later Than 60 Days After Discovery. Is HIPAA Unreasonable, Though?
HealthITSecurity dives into an issue that both this site and Protenus have often addressed: the gap between when entities first become aware of a breach or that something likely happened, and the date on which they send notifications to affected patients. In some cases, entities’ disclosures and notifications are more than 60 days after they…
Hackers Snatch and Try Unsuccessfully to Ransom Data from IT Service Provider; CityComp’s Big Clients Impacted
Joseph Cox reports: Hackers have broken into an internet infrastructure firm that provides services to dozens of the world’s largest and most valuable companies, including Oracle, Volkswagen, Airbus, and many more as part of an extortion attempt, Motherboard has learned. The attackers have also released data from all of those companies, according to a website…
SkyMed Medical Evacuation Membership Service Exposed Data of 137k Members
Jeremiah Fowler reports on another unsecured elasticsearch database that his firm has found: On March 27th I discovered an unsecured Elasticsearch database that contained what appeared to be members of a medical evacuation membership service. Upon further inspection of the data there were many references that the data allegedly belonged to Florida based SkyMed. It…
North Carolina’s Much Anticipated Data Breach Notification Law Amendment Moves to General Assembly
Joseph J. Lazzarotti and Maya Atrakchi of JacksonLewis PC writes: The much-anticipated amendment to North Carolina’s data breach notification law that we reported on earlier this year (see here) has finally been introduced to the state’s General Assembly. The bill entitled, an Act Amending the Identity Theft Protection Act, House Bill DRH40393-LR10C, is primarily sponsored…
Security breach shuts down network for Woodruff Arts Center, High Museum
WSB-TV reports: The Woodruff Arts Center says it is investigating a security breach after an unauthorized third party caused a massive network outage, affecting many of the center’s operations and systems. The Alliance Theatre, the Atlanta Symphony Orchestra and the High Museum of Art were all affected by the breach. Read more on WSB. The…