Catalin Cimpanu reports: An Oregon man and a former employee of Ubiquiti Networks was arrested and charged today with hacking the company’s servers, stealing gigabytes of information, and then attempting to extort his employer for $2 million when Ubiquiti began investigating the breach. The suspect, arraigned in a courtroom earlier today, was identified as Nickolas Sharp,…
Planned Parenthood’s Los Angeles clinics hit by ransomware; patient data stolen
Reuters reports: Planned Parenthood’s Los Angeles clinics suffered a ransomware attack in October and personal information of 400,000 patients was stolen, a spokesperson for the women’s reproductive healthcare organization said on Wednesday. Spokesperson John Erickson said an “unauthorized person” gained access to the Los Angeles affiliate’s network between Oct. 9 and 17 and installed ransomware…
Waikato DHB cyberattack: Cancer hub out of action in chaotic aftermath
Natalie Akoori reports that the May ransomware attack by Vice Society threat actors on Waikato District Health Board impacted one of the country’s four regional cancer hubs. According to a contingency planning document put together in the aftermath of the attack and released by the DHB under the Official Information Act, at least 30 cancer…
Russian Man Sentenced for Providing ‘Bulletproof Hosting’ for Cybercriminals
A Russian man was sentenced today for providing “bulletproof hosting” services, which were used by cybercriminals between 2009 to 2015 to distribute malware and attack financial institutions and victims throughout the United States. On Dec. 1, Chief Judge Denise Page Hood of the U.S. District Court for the Eastern District of Michigan sentenced Aleksandr Grichishkin,…
CarePartners agrees to settle proposed cyberattack class action for up to $3.4 million, but don’t party just yet
Bernise Carolino reports that there is a settlement in a lawsuit against CarePartners in Canada. The proposed class-action lawsuit stemmed from a breach in 2018 that DataBreaches.net investigated and covered on this site. The firms of Howie, Sacks & Henry LLP (HSH), Waddell Phillips PC and Schneider Law Firm represented the plaintiffs, Arthur Redublo and…
UK watchdog’s punishment for Blackbaud, Easyjet, other big privacy lawbreakers was slap on the wrist in private
Gareth Corfield reports: Blackbaud was given a private slap on the wrist by the UK’s Information Commissioner’s Office (ICO) after paying off criminals who stole users’ financial data from the cloud CRM biz’s servers. The astonishingly mild sanction was revealed in a Freedom-of-Information response after senior data protection specialist Jon Baines at London law firm Mishcon de Reya asked…