Another legal services vendor discloses a breach: Compex Legal Services Inc. (“Compex”) recently discovered an incident that may have impacted the privacy of information related to certain individuals. Compex provides record retrieval and litigation support services to insurance carriers, third party administrators and law firms. As Compex continues to investigate and work toward notifying impacted…
39 healthcare providers sue UnitedHealth over Change hack
There’s no way that DataBreaches has enough time to track all of the lawsuits filed against UnitedHealth Group and its subsidiaries, Optum and Change Healthcare, as a result of the Change Healthcare hack, but over on Becker’s Hospital Review, Giles Bruce reported about a suit of particular note: Thirty-nine healthcare providers and the National Community…
Third-party breach resulted in Singapore Moneylenders Credit Bureau being leaked by GhostR (UPDATED)
Threat actors known as GhostR claim to have stolen more than 50 GB of files on loan borrowers from the Singapore MLCB (the Moneylenders Credit Bureau). They have offered some of the data as a leak on a popular hacking forum and provided proof of claims in the form of copies of completed loan applications:…
KY: Cyberattack closes Jefferson County Clerk’s Office, all motor vehicle branches
Matthew Keck reports: If you were planning to visit the Jefferson County Clerk’s Office or a motor vehicle branch on Tuesday, you’ll have to reschedule. A cyber attack forced the Jefferson County Clerk’s Office to close its eight branches this week. The attack was first discovered at 2:24 a.m. Monday, said Ashley Tinius, a spokesperson…
North Korean Hackers Targeted Cybersecurity Firm KnowBe4 with Fake IT Worker
James Coker reports: Cybersecurity awareness training company KnowBe4 has revealed it was duped into hiring a fake IT worker from North Korea, resulting in attempted insider threat activity. The malicious activity was identified and prevented before any illegal access was gained or any data was compromised on KnowBe4 systems. In a blog published on July 23,…
Ransomware ecosystem fragmenting, but not necessarily great news
Alexander Martin reports: Veteran cybercriminals involved in ransomware attacks are increasingly shying away from large ransomware-as-a-service (RaaS) platforms following a spate of law enforcement disruption operations, as well as the AlphV/BlackCat gang’s high-profile exit scam, according to officials and industry experts. Organized online crime groups are attempting to reduce their dependence on RaaS services by developing…