Shaker Heights City School District in Ohio has notified the Maine Attorney General’s Office and the Montana Attorney General’s Office of a data security incident. The incident was discovered on January 30, 2022, but the investigation revealed that it had begun as early as September 1, 2021. Data were exfiltrated as part of the...
Schneck Medical Center announced Friday that it was notifying “a limited number” of patients of a data security incident that resulted in the access and exfiltration of some files containing protected health information (PHI). They do not indicate how many patients are being notified and the incident does not yet appear on HHS’s public...
Alyssa M. Sones of SheppardMullin writes about a data breach lawsuit with a somewhat different, albeit unsuccessful, approach. Sones explains: Fraser’s allegation that Mint had a role in helping the hacker gain control of his phone number sets this case apart from the typical data breach case….. Fraser alleges that Mint allowed Fraser’s number...
On March 14, Parker-Hannifin discovered unauthorized access to to their IT systems that began three days earlier. Their investigation determined some files on Parker’s IT systems had been accessed and possibly acquired by the attacker. The information involved related to current and former employees, their dependents, and members of Parker’s Group Health Plans (including...
Justin Henry reports: The cyberattack of Philadelphia midsize law firm Stevens & Lee has grown to include 23,066 people whose personal information was potentially compromised, including customers of the firm’s financial institution clients, according to public records. The new figure, revealed in notices to authorities last month, is a sharp increase from the 344 potentially impacted individuals reported...
Capital One will pay $190 million to resolve claims it jeopardized customer information in a 2019 data breach. The settlement benefits around 98 million Capital One customers whose information was compromised as part of the 2019 data breach. Read more at TopClassActions. This settlement is separate from the $80million penalty Capital One was fined...
Brian Krebs reports: The U.S. Drug Enforcement Administration (DEA) says it is investigating reports that hackers gained unauthorized access to an agency portal that taps into 16 different federal law enforcement databases. KrebsOnSecurity has learned the alleged compromise is tied to a cybercrime and online harassment community that routinely impersonates police and government officials to harvest...
Quantum Imaging & Therapeutic Associates (QITA) is notifying patients of a data breach detected on October 7, 2021. WGAL reported on it after some recipients of the letter wondered if it was a scam. It’s not. QITA’s notice on their website states that they detected and stopped a data security incident on October 7,...
RNZ reports: AA Traveller said the website was in use between 2003 and 2018 and allowed customers to make travel bookings, enter competitions and take part in surveys. In a statement on its website AA Traveller said it “recently discovered a vulnerability in the application where the AA Traveller information was stored and that...
How to Fight Foreign Hackers With Civil Litigation