Another vendor hack compromises sensitive information An attack on a documents storage service has resulted in the leak of sensitive information of victims of family violence and sexual assault who had been treated at Monash Health, the public health service in Victoria. The attack also compromised the personal information of current and former students at […]
Older Medicare numbers used Social Security numbers A consulting firm that provides civil litigation support to the U.S. Department of Justice has sent notification letters to 341,650 Medicare members whose information they had been entrusted with. The letter from Boston-based Greylock McKinnon Associates, Inc. reassured recipients that they were not the target the DOJ investigation […]
TechCrunch reports: An international law firm that works with companies affected by security incidents has experienced its own cyberattack that exposed the sensitive health information of hundreds of thousands of data breach victims. San Francisco-based Orrick, Herrington & Sutcliffe said last week that hackers stole the personal information and sensitive health data of more than 637,000 […]
The Hill reports: The U.S. sued a software company targeted in a massive Russian cyber espionage campaign Monday. The Securities and Exchange Commission (SEC) suit against Texas-based SolarWinds is seeking civil penalties, reimbursement of “ill-gotten gains” and the removal of the company’s top security executive, Tim Brown, according to The Associated Press. “We allege that, for years, […]
Bloomberg Law reports: More than 100 survivors of sexual abuse by clergy of the Catholic Church asked a Connecticut federal judge for final approval of their $6.5 million settlement with a bankruptcy services firm that mistakenly revealed their identities online. Epiq Corporate Restructuring LLC would pay at least 128 individuals cash payments of $50,000 under […]
InfoTechLead reports that Accenture said on Thursday that the US Justice Department is investigating its unit, Accenture Federal Services, over allegations that one or more employees gave inaccurate information concerning the unit’s compliance with federal security controls. The disclosure was made in an SEC filing: After Accenture Federal Services (“AFS”) made a voluntary disclosure to the U.S. […]
PA Media reports that Equifax UK was fined over a breach at the firm’s U.S. owner, Equifax, Inc. The UK’s financial watchdog has fined Equifax £11 million for its role in one of the largest cyber attacks, which affected more than 13 million British consumers in 2017. The credit rating giant failed to keep its […]
In August, The Data Breach Times reported a data breach involving UnitedLex that raised questions about their security and incident response. The article also noted a lawsuit that was filed by a former employee. This week, the Kansas City Business Journal reports another lawsuit stemming from that breach. This one reportedly: accuses UnitedLex of negligence […]
After it has been determined that a breach has taken place, there are various tasks that need to be done that are usually not in the sweet spot of the person that has been breached. Several vendors pretend they have a vertically integrated, one stop shop, solution. They don’t. They use third-party vendors who hide […]
