Two reports that I have been reading today: ARcare ARcare in Arkansas is notifying people whose personal and/or medical information may have been accessed or acquired in a malware incident. The malware enabled an unauthorized actor to access or acquire data between January 18, 2022 and February 24, 2022. The types of information involved included…
Health data leak: 1.5 million euro fine against Dedalus Biologie
Seen at Osborne Clark: Following a massive health data leak disclosed in the press concerning nearly 500,000 persons in February 2021, the French Authority for Data Protection (CNIL) has fined (fr) the company Dedalus Biologie 1.5 million euros mainly for failure to comply with its data security obligation. Dedalus Biologie is an application software editor…
Mailpac customers affected by Aeropost data breach
Olivia Brown reports: Courier company Mailpac Group Limited, and Florida, United States-based logistics management and package delivery company, Aeropost, have come under fire over an email informing customers of a credit card breach. One customer shared that the email stated that her credit card had been “compromised,” and she should check her credit card statement…
Iranian Hackers Claim They’ve Hit the Bank of Israel – but ‘No Proof,’ Cyber Authority Says
Oded Yaron reports: A group of hackers purportedly linked to Iran said on Monday that they had succeeded in hacking into the system used to transfer money between Israeli banks and through it entered into people’s personal accounts. However, Israel’s National Cyber Directorate and the Bank of Israel, which operates the network, said they found…
Bored Ape Yacht Club Instagram Hacked, NFTs Worth Millions Stolen
Lorenzo Franceschi-Bicchierai reports: On Monday, the Bored Ape Yacht Club NFT project announced that its Instagram account had been hacked in a tweet. “There is no mint going on today. It looks like BAYC Instagram was hacked. Do not mint anything, click links, or link your wallet to anything,” the group wrote. Read more at Vice. At…
New York dental insurer reports phishing incident, French hospital group hit in ransomware incident
Healthplex, Inc. in New York provides dental insurance plans. On November 24, 2021, an employee reportedly fell for a phishing attempt. As a result, the insurer notified 76,262 of their insured members whose personal information may have been impacted. They do not make clear whether their investigation confirmed access and exfiltration or just access, so…