Good Shepherd Centres in Canada recently disclosed a breach involving protected health information that occurred on September, 27, 2020. On June 29, Good Shepherd posted a statement that explains that it had been the victim of an attempt to shut down its systems, but that the attacker(s) “quickly facilitated restoration after realizing that Good Shepherd…
Insurer Dominion National settles for $2 million in data breach lawsuit
Ax Sharma reports a settlement in litigation over a breach that was disclosed in 2019 but presumably began in 2010. Dominion National, Virginia-based insurance provider of dental and vision health benefits has reached settlement in the class action lawsuit concerning the decade-old data breach that exposed sensitive customer information of over 2.9 million patients. Although…
US chemical distributor shares info on DarkSide ransomware data theft
Sergiu Gatlan reports: World-leading chemical distribution company Brenntag has shared additional info on what data was stolen from its network by DarkSide ransomware operators during an attack from late April 2021 that targeted its North America division. Read more on BleepingComputer.
NYDFS Issues Guidance on Cybersecurity Controls to Combat Ransomware and Clarifies Reporting Obligations
Lance Taubin, Kate Hanniford, and Kimberly Peretti of Alston & Bird write: The New York Department of Financial Services (NYDFS) issued new guidance this week intended to assist organizations in thwarting ransomware attacks. The guidance clarifies the NYDFS’ expectation that NYDFS-regulated companies should “implement these controls whenever possible” and report any successful deployment of ransomware…
Cyber reinsurance rates rocket at July renewals
Carolyn Cohn reports: Global cyber reinsurance rates have soared by up to 40% in the July renewal season, reinsurance broker Willis Re said on Thursday, as ransomware attacks increase in number and severity. The average ransom payment made by a business to restore data after a cyber attack was $220,000 in the first quarter, up…
Dutch police seize server of DarkSide ransomware group
Tweakers reports: The Dutch police confiscated a server of the DarkSide group and obtained terabytes of stolen data. DarkSide was also behind the attack on an American oil pipeline company, but no data has been obtained. The data on DarkSide’s server was not encrypted and the police were therefore able to investigate the information. Police found no…