Jessica Davis reports: One month after notifying 350,000 patients of a potential theft of their protected health information, ReproSource Fertility Diagnostics has been sued by a patient over alleged security failings. ReproSource is a clinical laboratory for fertility specialists and a subsidiary of Quest Diagnostics. First disclosed Oct. 8, an attacker hacked into the ReproSource network in…
SUNY Geneseo student to face hacker in court two years after explicit photos were leaked
Carla Rogner reports: Natalie Claus is looking forward to graduating from SUNY Geneseo in December, but first she is focusing on another date on her calendar. On Wednesday, Claus will face a stranger in court, David Mondore, who hacked her snapchat account in December 2019 and sent an explicit photo saved in her private folder to…
FBI seized $2.2M from affiliate of REvil, Gandcrab ransomware gangs
Lawrence Abrams reports: The FBI seized $2.2 million in August from a well-known REvil and GandCrab ransomware affiliate, according to court documents seen by BleepingComputer. In a complaint unsealed today, the FBI seized 39.89138522 bitcoins worth approximately $2.2 million from an Exodus wallet on August 3rd, 2021. Read more on BleepingComputer.
Ottawa’s French public school board paid hackers a ransom following cyberattack
Ted Raymond reports: Ottawa’s French public school board says it was the victim of a network security breach in October and it paid the hackers a ransom to secure the stolen data. In a statement on its website, the Conseil des écoles publiques de l’Est de l’Ontario (CEPEO) said it was notified of the cyberattack…
Medsurant Health discloses ransomware incident, but not yet notifying patients
Medsurant Health in Pennsylvania recently notified HHS that 45,000 patients were impacted by a breach. The patients are not yet being notified, however, because it seems Medsurant is still trying to figure out who needs to be notified. In a statement published November 29, Medsurant stated that they received an email from a threat actor…
DNA Diagnostics Center notifying more than 2 million people who used a national genetic testing service
People who had their personal information collected by a national genetic testing organization between 2004 and 2012 may have never known that their information was acquired by DNA Diagnostics Center (DDC) in Ohio in 2012. They may find out now, though, as DDC fell prey to a cyberattack in May and data was exfiltrated over…