LATEST POST
AdaptHealth Notifies SEC About Material Incident
BankInfoSecurity reports: A publicly traded home medical equipment and services supplier has told U.S. regulators that hackers recently stole a potentially large volume of patients’ sensitive health and personal information, including data from external electronic health record portals, in a social engineering incident. Pennsylvania-based AdaptHealth in a July 2 filing to the U.S. Securities and […]
The “Anonymous” Tip System That Wasn’t: Three Months Later.
DataBreaches.net has followed up on a breach involving very sensitive personal information. The breach has been called “BlueLeaks 2.0” in some circles, and “Navigate360” in other publications, but it occurred when a hacktivist acquired 8.3 million tips from various tiplines that were supposed to protect the anonymity of the tipsters. As DataBreaches.net reports, neither P3 […]
When managing your money, take a chatbot’s ‘confidence’ with a grain of salt
Don’t be too impressed or too trusting of advice from a chatbot. The Conversation reports: Consider the following scenario. Suzy is 63, recently retired, and trying to decide when to start receiving Social Security and how to manage her retirement savings to minimize the tax hit. She opens an AI chatbot, types in the details and gets a […]
Hacktivists call out Trump by hacking and defacing US Army websites
TechCrunch reports: The U.S. Army has reportedly fixed two of its websites that had been defaced to display pro-Kurdish messages and to call out President Donald Trump, the latest case of hackers compromising systems run by the federal government in recent months. Security researcher Ronald Lovelace told Cyberscoop, which first reported the defacements, that error pages were modified on […]
Major medical device manufacturer notifies nearly 4 million of breach
The Record reports: The world’s largest medical device company is notifying more than 3.8 million people that their data may have been exposed in an attack reportedly linked to the ShinyHunters cybercrime group. On April 24, Medtronic confirmed an unauthorized party had accessed data in certain corporate IT systems, but said it had not identified […]
Ransomware Campaign Uses Fake Interpol Notices to Target Small Businesses
Security Boulevard reports: An emerging ransomware campaign is targeting small businesses with phishing emails that impersonate Interpol. The fake notices claim the recipient’s organization is under investigation for suspicious activity and that investigators have obtained information and video evidence tied to alleged criminal conduct. The lure is designed to create urgency and push the victim […]
AdaptHealth reports a contractor breach resulted in unauthorized access to patient data
On June 27, AdaptHealth notified the Securities and Exchange Commission of a data breach originating at an unnamed contractor: AdaptHealth Corp. (the “Company”) is investigating a security incident whereby a threat actor gained unauthorized access to Company systems and exfiltrated certain data therefrom. Upon learning of the incident, the Company promptly activated its incident response […]
Fake Interpol Investigation Emails Push Ransomware at Small Businesses Globally
HackRead reports: Fake Interpol investigation emails are targeting small businesses with Proton Drive links that deliver ransomware, encrypt files, and route victims to Tox chat. Small businesses are being targeted by fake Interpol investigation emails that impersonate law enforcement officials and pressure recipients to open files presented as evidence of suspicious company activity. In reality, doing […]
