Collaborate Disseminate
On December 22, ProSmile Holdings, LLC in New Jersey issued a press release about a data breach. If ProSmile — a dental service organization — is a business associate or otherwise covered under HIPAA, no report from them has shown up yet on… Continue reading ProSmile issues breach disclosure that creates more questions than it answers
On December 22, Clay County published a notice on its website about a ransomware attack in October. According to its notice, on October 27, 2023, the county determined that its network had been impacted by a ransomware attack between October 23 and 26…. Continue reading Clay County, Minnesota discloses ransomware attack in October
Myind reports: India’s state-owned telecom operator, Bharat Sanchar Nigam Ltd (BSNL), experienced a substantial data breach, placing the personal information of thousands of users at risk. Reports indicated that a threat actor on the dark web had… Continue reading BSNL experiences data breach, hacker shares some information on the dark web
Nicole DeFeudis reports: AbbVie accused a former employee and a rival oncology developer of stealing trade secrets about its antibody-drug conjugate programs. The pharma giant on Friday filed suit in California federal court against Adcentrx and scient… Continue reading AbbVie files trade secrets suit against Adcentrx and former employee
Katie Palmer reports: Odds are, you’ve gotten at least one of the unnerving letters in your mailbox this year: “We’re writing to inform you of a cybersecurity incident,” it might start. It’s the standard notice many health care organizations are requir… Continue reading Health data breaches hit an all-time high in 2023
Joe Tidy reports: An 18-year-old hacker who leaked clips of a forthcoming Grand Theft Auto (GTA) game has been sentenced to an indefinite hospital order. Arion Kurtaj from Oxford, who has autism, was a key member of international gang Lapsus$. The gang… Continue reading Lapsus$: GTA 6 hacker Arion Kurtaj sentenced to secure hospital for indefinite period
Daryna Antoniuk reports: Google Chrome has released an emergency security fix for a zero-day flaw that has been exploited in the wild. This vulnerability, tracked as CVE-2023-7024, affects the desktop versions of the browser on Mac, Linux and Windows. … Continue reading Google discovers another Chrome zero-day exploited in the wild
AlphV wasn’t the only group experiencing some disruption this week In August, “The Five Families” announced the collaboration of ThreatSec, SiegedSec, Stormous, BlackForums (now BlackSec), and GhostSec: A group created to establish be… Continue reading The Five Families disrupted after SiegedSec hacked; SiegedSec thrown out, Blog Hijacked
In response to the takedown notice on their original leak site and other damage done to their operations as described in the DOJ press release and warrant application that was unsealed today, AlphV posted this: As you all know, the FBI got the keys to … Continue reading AlphV reacts to law enforcement action by allowing affiliates to attack hospitals, critical infrastructure
The timeline from their notification to consumers tells the sad story: Notice of Data Security Incident We are notifying you of a recent data security incident involving your personal information. This notice explains the incident, steps Xfinity has ta… Continue reading Comcast Cable Communications notifies 35,879,455 consumers affected by Citrix incident