Alexander Castro reports: A data breach at Donald W. Wyatt Detention Facility had 10 times the number of victims originally estimated last year, according to a class-action lawsuit filed last week in Rhode Island U.S. District Court. The breach occurred on Nov. 2, 2023. Four days before Christmas, the Central Falls facility publicized that the personal data of…
Newborn data allegedly accessed by doctor seeking profit
It’s an old story, but it continues to occur: insiders using data to open their own businesses or practices. This time, 800 people are being notified by Windsor area hospitals in Canada that their babies’ data was “inappropriately accessed” by a pediatrician within Windsor Regional Hospital. Travis Fortnum reports: In a statement sent to CTV…
North Korean Government Hacker Charged for Involvement in Ransomware Attacks Targeting U.S. Hospitals and Health Care Providers
Hacking Group Known as “Andariel” Used Ransom Proceeds to Fund Theft of Sensitive Information from Defense and Technology Organizations Worldwide, Including U.S. Government Agencies A grand jury in Kansas City, Kansas, returned an indictment on Wednesday charging North Korean national Rim Jong Hyok for his involvement in a conspiracy to hack and extort U.S. hospitals…
CA: Legal services vendor hacked in April, medical information acquired by hacker
Another legal services vendor discloses a breach: Compex Legal Services Inc. (“Compex”) recently discovered an incident that may have impacted the privacy of information related to certain individuals. Compex provides record retrieval and litigation support services to insurance carriers, third party administrators and law firms. As Compex continues to investigate and work toward notifying impacted…
39 healthcare providers sue UnitedHealth over Change hack
There’s no way that DataBreaches has enough time to track all of the lawsuits filed against UnitedHealth Group and its subsidiaries, Optum and Change Healthcare, as a result of the Change Healthcare hack, but over on Becker’s Hospital Review, Giles Bruce reported about a suit of particular note: Thirty-nine healthcare providers and the National Community…
Third-party breach resulted in Singapore Moneylenders Credit Bureau being leaked by GhostR (UPDATED)
Threat actors known as GhostR claim to have stolen more than 50 GB of files on loan borrowers from the Singapore MLCB (the Moneylenders Credit Bureau). They have offered some of the data as a leak on a popular hacking forum and provided proof of claims in the form of copies of completed loan applications:…