ClassActions.org reports that CareSouth Carolina has been hit with a potential class action lawsuit. The caption is Mixon v. CareSouth Carolina, Inc. § 4:22-CV-00269 You can access a copy of the complaint at https://www.classaction.org/media/mixon-v-caresouth-carolina-inc.pdf The lawsuit stems from what the complaint describes as an attack against CareSouth in 2020 that was first reported to affected individuals…
Your morning reminder that health data breaches are … everywhere (updated)
Every day, I compile data on breaches or leaks involving medical or health data. Many of them never appear on this blog at all. Others will appear on this blog many months before the entity ever discloses the breach to regulators or those impacted. Many of the incidents I compile will not attract a lot…
Cyber-attack strikes German fuel supplies
Joe Tidy reports: A major fuel supplier in Germany is operating at a “limited capacity” after a cyber-attack disrupted IT systems at the weekend. Oiltanking Deutschland GmbH & Co. KG stores and transports oil, vehicle fuels and other petroleum products for companies like Shell. It says it discovered it had been hacked on Saturday. It…
UK: Full cost of 2020 cyber attack on SEPA still not known
In January 2021, the Scottish Environmental Protection Agency (SEPA) disclosed it was in the throes of a ransomware attack. In June 2021, SEPA revealed that it was building a new IT system from scratch and had not recovered all of its files. Now, Andrew Picken of BBC reports: Scotland’s environment watchdog has written off £2m…
Inside Trickbot, Russia’s Notorious Ransomware Gang
Matt Burgess reports: WHEN THE PHONES and computer networks went down at Ridgeview Medical Center’s three hospitals on October 24, 2020, the medical group resorted to a Facebook post to warn its patients about the disruption. One local volunteer-run fire department said ambulances were being diverted to other hospitals; officials reported patients and staff were safe. The downtime at the Minnesota medical…
Securitas misconfiguration exposed airport employee info
From SafetyDetectives: The SafetyDetectives cybersecurity team discovered a critical data leak affecting the prominent multinational security company, Securitas…. One of the company’s Amazon S3 buckets was left open, exposing over 1 million files. The data we observed related to airport employees from different sites across Colombia and Peru, and there could be entities from other nations with…