On November 28, the New York State Department of Financial Services (DFS) issued a press release about a settlement stemming from a 2019 data breach: The New York State Department of Financial Services (DFS) today announced that First American Title Insurance Company (First American) will pay a $1 million penalty to New York State for […]
Ardent Health Services owns and operates 30 hospitals and health systems with 200+ sites of care with more than 1,400 aligned providers in six states. Earlier today, they posted a security incident notice on their site: Ardent Health Services and its affiliated entities (“Ardent”) became aware of an information technology cybersecurity incident on the morning of […]
DataBreaches.net reports on a ransomware incident where the victim was re-encrypted — and then re-encrypted again. From there, things took a downward turn, with AlphV getting mad at Henry Schein and Coveware and re-encrypting Henry Schein to put more pressure on them to negotiate and pay. DataBreaches.net provides a chronology of updates, including what seems […]
CNN reports: A network of hospitals in East Texas has not been able to accept ambulances to emergency rooms since Thanksgiving Day because of a “potential [cyber]security incident,” a hospital spokesperson told CNN on Friday. The hospital network, UT Health East Texas, is operating using “established downtime procedures” as the hospital investigates “a potential security incident” and works to bring computers back online, spokesperson Allison Pollan said in an email. Pollan did not respond to subsequent […]
SiliconAngle reports: Hackers have stolen the personal data of more than 8.4 million patients from Welltok Inc., a Denver-based company that provides software for healthcare organizations. Welltok first disclosed the breach in October without sharing the full details of the incident. On Wednesday, it revealed that the hackers had stolen information belonging to some 8,493,379 […]
Americans who hoped to close on home sales this week may have had their hopes dashed by an attack on Fidelity National Financial. The Register reports: Fortune 500 insurance biz Fidelity National Financial (FNF) has confirmed that it has fallen victim to a “cybersecurity incident.” The announcement came in the form of an 8-K filing […]
Happy Thanksgiving 2023! This is our first Thanksgiving at The Data Breach Times and we are taking the day off to spend with our families and loved ones. When we give thanks this year, we will also be giving thanks for our readers and those who have helped us create this website and develop it. […]
Seen on Back End News: Retail organizations faced a growing threat from ransomware attacks, with fewer managing to stop the encryption of their data. Sophos, a cybersecurity leader, revealed that only a quarter of retailers prevented data encryption during attacks in the last year, marking a decline from previous years. This trend indicated a struggle […]
Earlier today, CISA issued an advisory: StopRansomware: LockBit 3.0 Ransomware Affiliates Exploit CVE 2023-4966 Citrix Bleed Vulnerability. The advisory includes TTPs and IOCs obtained from FBI, ACSC, and voluntarily shared by Boeing following its recent attack by LockBit that resulted in their data being leaked. Boeing observed LockBit 3.0 affiliates exploiting CVE-2023-4966, to obtain initial […]
Bleeping Computer reports: The Canadian government says two of its contractors have been hacked, exposing sensitive information belonging to an undisclosed number of government employees. These breaches occurred last month and impacted Brookfield Global Relocation Services (BGRS) and SIRVA Worldwide Relocation & Moving Services, both providers of relocation services to Canadian government employees. Government-related information stored […]
