Seen on the county’s website, dated April 22, 2022: Notice of Data Privacy Event Scott County, Iowa (“Scott County”) is providing notice of a data privacy event. To date, we have no evidence of actual or attempted misuse of information as a result of this incident. In an abundance of caution, we are notifying potentially…
Cyber attack causes chaos in Costa Rica government systems
Javier Cordoba and Christopher Sherman report: Nearly a week into a ransomware attack that has crippled Costa Rican government computer systems, the country refused to pay a ransom as it struggled to implement workarounds and braced itself as hackers began publishing stolen information. The Russian-speaking Conti gang claimed responsibility for the attack, but the Costa…
Lewis and Clark Community College sends out notifications concerning ransomware incident
As reported previously, Lewis and Clark Community College was hit with a ransomware attack in November, 2021. They announced it immediately due to impact on the functioning of their systems, but it appears that they are just now issuing breach notification letters to individuals. Their notification letter says that information was encrypted but that there…
Edu-tech firm GeniusU fined $35,000 for data leak affecting 1.26m users
Rei Kurohei reports: GeniusU, a Singapore-based education technology company, has been fined $35,000 for a data breach that resulted in the theft of 1.26 million users’ personal data. The incident is one of the largest data breaches here in recent years, in terms of the number of users affected. Read more at The Straits Times. As…
Kaiser Wins Trademark Injunction Against Patient Data Company
Isaiah Poritz reports: Kaiser Foundation Health Plan Inc. won a preliminary injunction in California federal court against medical records company SureFile Filing Systems for attempting to sell patient data using Kaiser’s trademarks. Kaiser is likely to succeed on the merits of its breach of contract and common law trademark counterclaims against SureFile, Judge Mark C. Scarsi…
Wawa wants a refund, says Mastercard owes $32 million for data breach penalties
Joseph N. DiStefano reports: Wawa, the Delaware County-based convenience store and gas station chain, paid $10.7 million last year linked to a 2019 breach of its customer payment security systems. But now it wants that money back — and more. On Monday in federal court in New York, Wawa sued Mastercard, the giant payment-card network,…