LATEST POST
California Statewide Automated Welfare System hacked; 19,000 accounts affected
The Record reports: More than 19,000 online accounts on a California state platform for welfare programs may have been accessed by hackers for nearly a year. Officials at the California Statewide Automated Welfare System filed breach notification documents with state regulators earlier this month, warning participants in the BenefitsCal program about an intruder. A spokesperson explained that […]
Wealthy Taxpayers Alerted to Leaked Data Years After IRS Breach
There is an update to the IRS data breach by contractor Charles Littlejohn, who leaked returns from former President Trump, Elon Musk, and other billionaires. Bloomberg Law reports: Some taxpayers are learning that their data was leaked in the widespread breach by a former IRS contractor that led to the release of former President Donald […]
United Healthcare, Optum, and Change Healthcare Involved in Northeast Ohio Neighborhood Health Data Breach
Marco A. De Felice reports: Another significant data breach looms for United Healthcare (UHC), involving patient documents belonging to its Optum financial assistance program and its subsidiary Change Healthcare. In recent hours, the ransomware group Medusa has claimed on its website, within Tor networks, the cyberattack on the servers of Northeast Ohio Neighborhood Health (NEON), a company providing healthcare services headquartered in Cleveland, […]
Kaiser Permanente discloses breach that may have impacted 13.4 million patients
Healthcare giant Kaiser Permanente has joined the ranks of those who have disclosed that their websites may have improperly shared protected health information with others. The issue with tracking pixels was first highlighted in investigative reporting by The Markup last year. They have continued to report on the issues, including fines paid, litigation, and Federal […]
UnitedHealth says ‘substantial proportion of people in America’ affected by Change Healthcare ransomware attack
Hackers exploited remote access that had no multifactor authentication UHG states it paid ransom to protect patient data UnitedHealth Group (UHG) issued a statement yesterday, claiming they were announcing support for people who might be concerned about their personal data being affected by the massive Change Healthcare data breach. Their statement says, in part: Based […]
Congress starts investigating the Change Healthcare cyberattack; Threat actors claim to put data up for sale
The House Energy & Commerce Health Subcommittee held a hearing yesterday, “Examining Health Sector Cybersecurity in the Wake of the Change Healthcare Attack.” It reportedly did not go well for Change Healthcare and UnitedHealth Group, who were not invited to testify and who did not send any representatives to the hearing. The committee was previously […]
Crickets from Chirp Systems in Smart Lock Key Leak
Brian Krebs reports that the U.S. government is warning that “smart locks” securing entry to an estimated 50,000 dwellings nationwide contain hard-coded credentials that can be used to remotely open any of the locks. “The lock’s maker Chirp Systems remains unresponsive, even though it was first notified about the critical weakness in March 2021,: Krebs reports. “Meanwhile, […]
MGM Resorts Sues the Federal Trade Commission to Limit Investigation into 2023 Data Breach
Although the Federal Trade Commission (FTC) has the authority to investigate data breaches, some entities they have investigated have pushed back against the regulator. In 2013, FTC filed a complaint against LabMD for allegedly failing to protect consumer’s data. When the government found for itself in a proceeding by an administrative law judge, LabMD sued […]