Salinas Valley Memorial Healthcare System has agreed to pay $340,000 to resolve claims lax cybersecurity resulted in a 2020 data breach. Five employee and contractor email addresses were reportedly compromised in April, May and June of 2020 through a phishing scheme. As Salinas claimed in their notification of July 1, 2020: On April 30, 2020,…
Snapchat, Amex sites abused in Microsoft 365 phishing attacks
Sergiu Gatlan reports: Attackers abused open redirects on the websites of Snapchat and American Express in a series of phishing attacks to steal Microsoft 365 credentials. Open redirects are web app weaknesses that allow threat actors to use the domains of trusted organizations and websites as temporary landing pages to simplify phishing attacks. Read more at…
More than 100 Dutch dental practices closed for days due to cyber attack
On August 5, RTL Nieuws reported: More than a hundred dental practices will be forced to keep their doors closed in the coming days. These are practices of Colosseum Dental Benelux, a large company with more than 130 branches in Belgium and the Netherlands. The company has been hit by a cyber attack and is going to…
Louisiana Public Facilities Authority (LPFA) victim of ransomware attack
The following notification was first published on July 18 as a legal notice: 00110404 PUBLISH 07/18/22 – 09/02/22 Notice of Data Breach On or about February 26, 2022, the Louisiana Public Facilities Authority (LPFA) was the target of a ransomware attack by unknown persons. Our investigation indicates the attack may have gone on over a…
BHG Behavioral Health Group recently notified patients of a December 2021 breach
If you know to scroll down on BHG Behavioral Health Group‘s website to their footer, you will see a small link to an undated data security incident notice. That undated notice does not reveal when Behavioral Health Group first discovered the data security incident or how they first discovered it. The notice does state, however,…
Leaked image shows ransomware attack hit Linn-Mar School District
Adam Carros and Ethan Stein report: Leaked screenshots show the Linn-Mar School District is dealing with a ransomware attack much more severe than the “technical difficulties” the district has described to staff and parents. A staff member shared with TV9 screenshots from district computers showing a warning message stating “all your files have been encrypted…