Thomas Claburn reports: Block – the digital payments giant formerly known as Square – faces allegations it failed to take adequate measures to protect customers’ personal information. A lawsuit [PDF], filed Tuesday in a federal district in Oakland, California, on behalf of two users of Cash App, operated by Block subsidiary Cash App Investing, claims the company…
Liberty Counsel’s Donor Records and Pro-Trump Election Messaging Exposed in Data Breach
Micah Lee and Michael Sherrard report: Liberty Counsel, an evangelical Christian nonprofit that provided a brief cited by the Supreme Court in its decision to overturn Roe v. Wade, has been hacked, revealing a 25-gigabyte internal database that contains nearly seven years’ worth of donor records. The hacker, who identifies with the Anonymous movement, released…
OCR Settles Case Involving Decade-Long Improper Disposal of Protected Health Information
There is an enforcement update to an incident noted on this site in 2018. The incident that involved New England Dermatology P.C., d/b/a New England Dermatology and Laser Center (“NDELC”) was summarized by HHS in their resolution agreement and corrective action plan for this case: On May 11, 2021, NEDLC filed a breach notification report…
Schools in Texas, Pennsylvania, and California hit with ransomware as schools reopen for the year
One lesson that should have been learned from past years is that ransomware groups will attack schools right as they get ready to open for the school year because districts may feel more pressured to pay so they can open. So far this week, DataBreaches has spotted ransomware attack reports on two k-12 school districts…
UAE: Cybercriminal arrested for trying to embezzle Dh2.8 million in phishing scam
Afkar Ali Ahmed reports: The Sharjah Police have arrested a 32-year-old man who tried to embezzle Dh2.8 million after hacking an advertisement company’s bank account. The Asian suspect committed the cyber fraud through phishing, the police said. Lt.-Col. Muhammad bin Haider, acting head of the Buhaira Comprehensive Police Station, said the suspect was arrested within…
Pk: Tension within SECP escalates as it tries to downplay data breach
Umar Cheema reports: Sensitive data of the Securities and Exchange Commission of Pakistan (SECP) has allegedly been stolen which has resulted in a tug of war between the chairman and the relevant commissioner. The latter claims she was kept in dark about the breach. The commissioner has now written to the finance minister for independent…