There’s more emerging about the Sharp Boys’ group attack on Israeli tourism sites. The Jerusalem Post now reports: The personal information of over 300,000 Israelis was leaked last month by an Iranian hacker group targeting Israeli travel booking sites. The group, named Sharp Boys, claimed last month that it had obtained data from Israeli tourism sites,…
CISA Alert (AA22-181A): MedusaLocker
CISA Alert: (AA22-181A) #StopRansomware: MedusaLocker Summary Actions to take today to mitigate cyber threats from ransomware: • Prioritize remediating known exploited vulnerabilities. • Train users to recognize and report phishing attempts. • Enable and enforce multifactor authentication. Note: this joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders…
Professional Finance Company, Inc. is providing breach notifications to patients of 657 covered entities
So this one could be another big one: Professional Finance Company, Inc. (“PFC”), an accounts receivable management company that provides assistance to various organizations (including healthcare providers), announced today that it is notifying individuals whose information may have been involved in a recent network security incident. On February 26, 2022, PFC detected and stopped a sophisticated…
Alameda Health System’s second breach went undetected by investigators of first breach?
On June 24, Alameda Health System in California submitted a notification to the California Attorney General’s Office. The notification concerned a breach of an employee’s email account breach that began on April 30, 2020. The breach wasn’t discovered until February 23, 2022, and the account was locked down after that in March. According to Alameda’s…
Updating: Breach reports from Eye Care Leaders’ clients continue to add up
As June drew to a close, DataBreaches’ little notepad tabulations indicate that we already have reports from 32 entities impacted by the Eye Care Leaders breach last December. Readers may recall that ECL’s myCare Integrity platform was reportedly accessed by an unauthorized individual who deleted some of the databases before being detected. As far as…
UPDATE: Michigan Avenue Immediate Care in Chicago submits notification concerning 2021 cyberattack
On May 18, DataBreaches.net broke the story about a cyberattack on Michigan Avenue Immediate Care in Chicago (MAIC). The threat actors who had attacked Unified Government of Wyandotte County and Kansas City in April claimed responsibility for the attack. Despite multiple inquiries sent to MAIC, no response was ever received, but the threat actors provided…