Cyber Security

A Rhode Island Superior Court judge has declined the Rhode Island Public Transit Authority (RIPTA) and UnitedHealthcare of New England's bid to dismiss a lawsuit associated with a data breach affecting over 20,000 present and former state employees. The class-action suit, filed by the American Civil Liberties Union (ACLU) of Rhode Island, alleges negligence by...

The U.S. Treasury Department has initiated sanctions against Sinbad, an implicated virtual currency mixer utilized by the North Korea-affiliated Lazarus Group for laundering illicitly acquired proceeds. This action targets the channel responsible for processing millions of dollars' worth of virtual currency originating from Lazarus Group-led heists, including those of the Horizon Bridge and Axie...

In a bid to bolster cybersecurity measures, Google has unveiled RETVec (Resilient and Efficient Text Vectorizer), a cutting-edge multilingual text vectorizer. This innovative tool is designed to fortify Gmail's defenses against potential threats like spam and malicious content. According to the description outlined on GitHub, RETVec operates on an advanced character encoder, exhibiting resilience against...

Henry Schein Inc., a major distributor of medical and dental supplies, continues to grapple with a cyber-attack that compromised its core systems, causing disruptions in its ecommerce platforms. The company faced a significant data breach on October 14, impacting its distribution and ecommerce systems. Even after nearly a month, during a recent earnings call on...

Queensland has passed the Information Privacy and Other Legislation Amendment Bill 2023, marking a significant step towards a mandatory data breach notification scheme for public sector entities. This legislation, approved in less than two months, mandates that state and local government bodies notify both affected individuals and the state’s privacy watchdog of significant data...

University of Iowa Community HomeCare faces legal action from a former employee and a patient, suing the entity on behalf of themselves and over 67,000 others for an alleged data breach in March. They claim UI Community HomeCare failed to prevent, reported late, and benefited unjustly while jeopardizing individuals for years. Becky Kaefring, a former...

Granger Medical Clinic (GMC) found itself listed as a victim on a ransomware group's leak site on November 24, 2023, with claims of unauthorized access to confidential information from GMC's network. The cyberattack allegedly resulted in the exposure of sensitive consumer data, including names, Social Security numbers, dates of birth, addresses, and phone numbers,...

The New York State Department of Financial Services (DFS) has announced a $1 million penalty against First American Title Insurance Co. for violating DFS's cybersecurity regulation, following a significant breach in May 2019 that exposed consumers' nonpublic information. The breach, leading to the exposure of sensitive consumer data, prompted the imposition of penalties on the...

Columbia University confronts a proposed class action following a May 2023 data breach that compromised personal data belonging to present and past students, employees, and applicants, as detailed in a 26-page lawsuit against the private New York City institution. The lawsuit alleges that cybercriminals exploited a security vulnerability within the MOVEit file transfer service on...

Allegations surfaced against a National Disability Insurance Agency (NDIA) employee accused of sharing approximately 11,000 "records" with at least one service provider linked to the program, as confirmed by Government Services Minister Bill Shorten during a Canberra interview. Shorten, refraining from specifying the exact number of affected participants, indicated that the leaked records encompassed a...

Heather Vidrine, a teacher from St. Landry Parish, was initially unfazed when news of a cyberattack struck her former school district in early August. However, her perspective shifted after her Facebook account was compromised, sparking concerns about a potential link between the incidents. Records obtained by The Acadiana Advocate and The 74, a nonprofit focusing...

KyberSwap disclosed a cyberattack earlier in the week that resulted in the theft of approximately $54 million worth of cryptocurrency. In a recent update, the platform confirmed the incident occurred through complex exploitative swaps, allowing the attackers to siphon users' funds into their wallets. The attackers executed a sequence of intricate actions to exploit vulnerabilities,...

UT Health East Texas, a network of hospitals in East Texas, has been unable to accept ambulance arrivals to emergency rooms since Thanksgiving due to a suspected cybersecurity incident, as confirmed by a hospital spokesperson to CNN. The hospital network is currently functioning under "established downtime procedures" as investigations into the potential security issue continue,...

Notorious Brazilian hacker collective N4ughtySecTU has purportedly targeted credit bureaus TransUnion and Experian, alleging a breach of their IT systems and demanding a staggering $60 million ransom, as reported by Times Live. However, both companies have vehemently refuted these claims, asserting no indications of any compromise within their IT infrastructures. This isn't the first encounter between...

UT Health East Texas, a network of hospitals in East Texas, has faced a significant disruption, rendering their emergency rooms unable to accept ambulances since Thanksgiving Day due to a potential cybersecurity incident, as disclosed by a hospital spokesperson to CNN. The hospital network, encompassing 10 hospitals and over 90 clinics, remains operational using established...