A trial involving a lawsuit against a law firm that was hacked in 2016 and paid extortion to thedarkoverlord but never notified their clients of the breach starts next week in Missouri. For some of the background, see previous coverage on this site: Missouri law firm sued by insurer for not disclosing 2016 hack by…
Mansfield company hacked, personal information stolen
Oops — I missed this one last week. George W. Rhodes reported: The computer system of a Mansfield company that does background checks for employers was hacked and the perpetrators got away with the personal information of 164,000 people. Creative Services Inc., located on Pratt Street, was hit by hackers in November, according to The…
Ph: Fines for data privacy breach capped at P5 million
Ranier Allan Ronda reports: The National Privacy Commission (NPC) has set a ceiling of P5 million on fines imposed on data privacy violators, following a revision of its penalty system based on public consultations. The NPC presented its revised schedule of administrative fines set under the updated Circular on Administrative Fines and the scope of…
BCBS of Kansas subcontractor offers free protection to members put at risk by data breach
Sarah Motter reports: A data breach at a Blue Cross Blue Shield subcontractor has left about 2,800 members at risk, however, the company has taken steps to ensure their information stays secure. Blue Cross and Blue Shield of Kansas says on Thursday, March 24, it was recently notified of a data breach that happened several months…
TX: Val Verde Regional Medical Center patient data dumped by LockBit
Val Verde Regional Medical Center (VVRMC) appears to have been the victim of a ransomware attack involving LockBit. According to LockBit, Val Verde Memorial Hospital was compromised and 96,000 patient records were exfiltrated. The listing was added to the leak site on March 16, with LockBit noting that the patient records had the following table…
Cybercriminal Connected to Multimillion Dollar Ransomware Attacks Sentenced for Online Fraud Schemes
An Estonian man was sentenced today to 66 months in prison for his years-long role in furthering and facilitating computer intrusions, the movement of fraudulently obtained goods and funds, and the monetization of stolen financial account information. He also participated in ransomware attacks causing over $53 million in losses and was ordered to pay over…