Law Firm Cyber Breach May Impact 23K, Including Financial Institution Client’s Customers

Justin Henry reports: The cyberattack of Philadelphia midsize law firm Stevens & Lee has grown to include 23,066 people whose personal information was potentially compromised, including customers of the firm’s financial institution clients, accordi… Continue reading Law Firm Cyber Breach May Impact 23K, Including Financial Institution Client’s Customers

Refuah Health Center “recently discovered” a breach that was listed on the dark web in June, 2021?

On April 29, 2022, Refuah Health Center in New York issued a statement on their website that begins: The privacy and security of the personal and protected health information we maintain is of the utmost importance to Refuah Health Center. We recently … Continue reading Refuah Health Center “recently discovered” a breach that was listed on the dark web in June, 2021?

Quantum Imaging & Therapeutic Associates notification following 2021 data security incident

Quantum Imaging & Therapeutic Associates (QITA) is notifying patients of a data breach detected on October 7, 2021. WGAL reported on it after some recipients of the letter wondered if it was a scam. It’s not. QITA’s notice on their webs… Continue reading Quantum Imaging & Therapeutic Associates notification following 2021 data security incident

South Florida Health Care Clinic Owners, Doctor, Others Sentenced in Medical Billing Fraud Scheme

Miami, Florida – On May 10, a federal district judge in Miami sentenced the last of 10 defendants for her role in a health care fraud scheme involving three physical therapy clinics that recruited and paid kickbacks to beneficiaries of Blue Cross Blue … Continue reading South Florida Health Care Clinic Owners, Doctor, Others Sentenced in Medical Billing Fraud Scheme

Boca Raton Attorney Allegedly Leaked Clients’ Confidential Files

Joshua Ceballos reports: All Priscilla Haring wanted from her divorce attorney, Richard Glenn Ozelie, was a divorce. But, according to her complaint filed in Broward civil court in March, what she got instead was scores of confidential files belonging … Continue reading Boca Raton Attorney Allegedly Leaked Clients’ Confidential Files

Insufficient Data Security and Disregard for Student Data Privacy Plague the DeKalb County School District; With Commentary by Jim Siegl

Keegan Brooks writes: The DeKalb County School District has been making thousands of files containing sensitive student and staff information widely accessible to anyone in the district. Types of information exposed have included social security number… Continue reading Insufficient Data Security and Disregard for Student Data Privacy Plague the DeKalb County School District; With Commentary by Jim Siegl

Sunday notes: Welldyne, North Alabama Bone & Joint Clinic disclose breaches affecting patient data

A Sunday two-fer on health data breaches: WellDyneRx, LLC (“WellDyne”) issued a press release on May 6 concerning an incident they first detected on December 2. The Florida-headquartered pharmacy benefits service provider’s investigat… Continue reading Sunday notes: Welldyne, North Alabama Bone & Joint Clinic disclose breaches affecting patient data

Cybercrime loves company: Conti cooperated with other ransomware gangs

Seems to be a lot of Conti-related analyses this week, as well as the $10 million reward offered by the government for information leadings to Conti’s leaders. From Intel471: Software developers often depend on the collective knowledge of the ind… Continue reading Cybercrime loves company: Conti cooperated with other ransomware gangs

Conti and Hive ransomware operations: Leveraging victim chats for insights

Kendall McKay and colleagues Paul Eubanks and Jaime Filson of Talos issued a report this week with some interesting insights. EXECUTIVE SUMMARY Through open-source research, we obtained and analyzed over four months of chat logs — more than 40 separate… Continue reading Conti and Hive ransomware operations: Leveraging victim chats for insights