Collaborate Disseminate
Anton Nilsson reports that threat actors who have been dumping files from Accellion clients have started dumping files from Transport NSW: Massive amounts of sensitive NSW government documents have been published online by hackers attempting to extort … Continue reading Transport NSW documents posted on dark web after Accellion hack
On March 3, this site noted that a security incident affecting Manitoba school districts sounded like a ransomware attack on Edsembli. Yesterday, Nunavut’s Department of Education confirmed it was a ransomware attack on the territory’s school informa… Continue reading Ca: Nunavut schools confirm school information system vendor suffered ransomware attack
Lydia Lam reports: A team leader at a call centre in Malaysia handling technical support for Singtel customers helped an ex-colleague retrieve information from more than 1,000 business accounts belonging to licensed moneylenders. The information, which… Continue reading Malaysia call centre worker jailed for retrieving Singtel customer details that were later sold to loan sharks
On February 26, Arizona Complete Health notified plan members of the Accellion breach. According to the notification (see below), the threat actors (who have since self-identified as CLOP) were able to “view or save” member information betw… Continue reading Arizona Complete Health notifies plan members of Accellion breach
Region 8 reports: Participants’ data of St. Bernards Total Life Healthcare, Inc. was breached by a ransomware attack, according to a media release from HIPAA Privacy Officer Daya S. Shipman. PeakTPA, a healthcare management services provider, notified … Continue reading AR: Total Life Healthcare data breached in ‘ransomware attack’
Joseph Brookes reports: A youth case worker stood down from a Victorian health department service provider on suspicion of accessing child pornography continued to access sensitive information about clients for months afterwards, according to a data br… Continue reading AU: Victoria privacy breach of vulnerable youth data
On February 16, 2021, Walmart was informed by one of its suppliers that a data hosting service they used was compromised on January 20, 2021. An unauthorized party accessed the service and stole records from that service provider. Some of those records… Continue reading Walmart: Notice of Data Security Incident
ANP reports (translation): Foreigners looking for a job in the Netherlands can obtain an assessment of their diploma on the labor market from the organization Nuffic. The application system used by Nuffic has been tested by some sixty software develope… Continue reading Data leak at Dutch foreign credential assessment service impacts 18,000
DataBreaches.net has found a second HIPAA-covered entity that has revealed that it was affected by the Accellion attack by CLOP threat actors. On February 25, Trillium Community Health Plan in Oregon disclosed that they had been notified by Accellion o… Continue reading Trillium Community Health Plan members impacted by Accellion breach
Hokkaido Cultural Broadcasting reports that an unnamed consulting firm in Tokyo contracted by Asahikawa City as part of rebuilding a housing complex was compromised by ransomware, resulting in the compromise of personal information for about 350 househ… Continue reading JP: Consulting firm hit with ransomware; 350 households have info possibly leaked