Not every big breach these days is a cyberattack. Sometimes it is just human error. Pensions & Investments recently reported that more than 451,000 people were affected by an incident that occurred at J.P. Morgan Chase Bank. The breach was disclosed to the Maine Attorney General’s office on April 29. The bank, which is a […]
Europol appears to have confirmed a breach first claimed by the threat actor known as IntelBroker, a moderator on BreachForums. IntelBroker’s listing, which was subsequently marked as “SOLD,” claimed to have breached Europol in May of this year, resulting in the exposure of “For Official Use Only” (FOUO) and classified data. The compromised data allegedly […]
Threat actors known as Scattered Spider are reportedly turning their attention to the financial sector, hitting banks and insurance groups. Resilience Cyber Insurance Solutions, which has been tracking the group, reports they have targeted 29 companies since April 20. Scattered Spider is the group that was previously linked to disrupting casinos and hotels such as MGM […]
Alleged LockBit Developer Created and Operated Most Prolific Ransomware Variant Under Aliases “LockBit” and “LockBitSupp”; U.S State Department Offers Reward Up to $10M; U.S. Department of Treasury Designates LockBit Administrator for Sanctions The U.S. Justice Department unsealed charges today against a Russian national for his alleged role as the creator, developer, and administrator of the […]
Another vendor hack compromises sensitive information An attack on a documents storage service has resulted in the leak of sensitive information of victims of family violence and sexual assault who had been treated at Monash Health, the public health service in Victoria. The attack also compromised the personal information of current and former students at […]
A reminder to carefully vet contractors and to terminate access promptly when their contract ends Wednesday, May 1, 2024. Damian Williams, the United States Attorney for the Southern District of New York, announced today that VINCENT CANNADY was arrested in connection with his scheme to extort a publicly traded information technology infrastructure services provider of […]
FCC Fines Largest Wireless Carriers for Sharing Location DataFCC Fines AT&T, Sprint, T-Mobile, and Verizon Nearly $200 Million for Illegally Sharing Access to Customers’ Location Data A significant press release from the Federal Communications Commission today: WASHINGTON, April 29, 2024—Today, the Federal Communications Commission fined the nation’s largest wireless carriers for illegally sharing access to […]
Healthcare giant Kaiser Permanente has joined the ranks of those who have disclosed that their websites may have improperly shared protected health information with others. The issue with tracking pixels was first highlighted in investigative reporting by The Markup last year. They have continued to report on the issues, including fines paid, litigation, and Federal […]
Hackers exploited remote access that had no multifactor authentication UHG states it paid ransom to protect patient data UnitedHealth Group (UHG) issued a statement yesterday, claiming they were announcing support for people who might be concerned about their personal data being affected by the massive Change Healthcare data breach. Their statement says, in part: Based […]
The House Energy & Commerce Health Subcommittee held a hearing yesterday, “Examining Health Sector Cybersecurity in the Wake of the Change Healthcare Attack.” It reportedly did not go well for Change Healthcare and UnitedHealth Group, who were not invited to testify and who did not send any representatives to the hearing. The committee was previously […]
