Chicago Sun-Times reports: Rogue employees of a Chicago company that specializes in negotiating ransoms to mitigate cyber attacks were carrying out their own piracy in a plot to extort millions of dollars from a series of companies, prosecutors say. Kevin Tyler Martin, a ransomware threat negotiator for River North-based DigitalMint at the time of the […]
Bleeping Computer reports: A hacker has taken responsibility for last week’s University of Pennsylvania “We got hacked” email incident, saying it was a far more extensive breach that exposed data on 1.2 million donors and internal documents. On Friday, University of Pennsylvania alumni and students began receiving multiple offensive emails from Penn.edu addresses claiming the university […]
Notice of Data Security Incident On October 23, 2025, Michael R. Schwartz, M.D., Inc. (“the Practice”) mailed notification letters to certain individuals whose information may have been involved in a recent data security incident. On or about August 25, 2025, the Practice became aware that an unauthorized party gained remote access to one computer within […]
Yale News reports a settlement stemming from a March, 2025 data breach that the Yale New Haven Health System reported to HHS as impacting 5,556,702 individuals: The Yale New Haven Health System has agreed to finance an $18 million settlement fund in response to a class action lawsuit about a data breach that allowed an unauthorized third […]
The Record reports: A Ukrainian national accused of launching ransomware attacks on behalf of the Conti group appeared in a U.S. court on Thursday after being extradited from Ireland. Oleksii Oleksiyovych Lytvynenko is facing several charges related to his suspected involvement with the Conti ransomware gang, which attacked hundreds of organizations globally before disbanding in 2022. The […]
Insurance Business Magazine reports: A Texas woman has sued Goosehead Insurance Agency over a data breach that exposed sensitive customer information, alleging the company waited seven months to sound the alarm. Jayda Slaughter filed the proposed class action in federal court on October 24, claiming the national insurance agency’s network was infiltrated in early March […]
Reuters reports: Hackers working for an unnamed nation-state breached networks at Ribbon Communications, a key U.S. telecommunications services company, and remained within the firm’s systems for nearly a year without being detected, a company spokesperson confirmed in a statement on Wednesday. Ribbon Communications, a Texas-based company that provides technology to facilitate voice and data communications […]
The Grand Junction Daily Sentinel reports: On Tuesday morning, Family Health West Hospital in Fruita discovered that it was the target of a cyberattack. While the cyberattack forced the hospital to shut down its electronic systems, a hospital spokesperson said that patient care has not been impacted, nor do they expect it will be. They […]
GGR Asia reports: The operator of the casino resort Marina Bay Sands in Singapore has been fined SGD315,000 (US$243,200) in relation to a data breach that took place in 2023 and involved the personal data of more than 665,000 clients. Singapore’s Personal Data Protection Commission (PDPC) said in an announcement on Tuesday that it had “imposed a […]
The Register reports: Iran’s school for state-sponsored cyberattackers admits it suffered a breach exposing the names and other personal information of its associates and students. The Ravin Academy was established in 2019, ostensibly to train individuals in all facets of cybersecurity and recruit the best to work on Iranian intelligence (MOIS) projects. As part of […]
