Data Breaches

A decade-long breach at a subsidiary of Nippon Telegraph and Telephone West Corp. (NTT West) has come to light, exposing personal data from about 9 million cases and raising profound concerns about data security practices within Japan’s telecom giant, NTT Group. The breach, stemming from NTT Business Solutions in Osaka, resulted from a former temporary...

Davis Polk & Wardell, LLP, a prominent law firm, recently filed a notice with Vermont's Attorney General, unveiling a data breach originating from one of their vendors, Rightway Healthcare. The breach exposed sensitive consumer data, including names, Social Security numbers, and dates of birth. Davis Polk commenced the process of notifying affected individuals following...

Sensitive data, encompassing a broad array of personal information including names, professions, and even passport details, linked to Bangladesh's National Telecommunication Monitoring Center (NTMC), has been exposed through an unsecured database. Hackers exploited the vulnerability and purportedly seized this trove of information, causing grave concerns about the reach and implications of such disclosures. While Wired...

North Mississippi Health Services (NMHS) disclosed a third-party data breach at Cadence Bank, the provider of treasury management services to NMHS, revealing a MOVEit-related incident that exposed a plethora of sensitive consumer data. The compromised information encompasses names, addresses, dates of birth, Social Security numbers, driver's license numbers, health insurance details, medical and treatment...

Pathology Resource Network (PRN) notified consumers following a MOVEit-related data breach affecting Cadence Bank, the provider of treasury management services to PRN. The breach led to unauthorized access to a wealth of sensitive consumer information, comprising names, addresses, dates of birth, Social Security numbers, driver's license numbers, health and treatment details, billing and claims...

Adams Bank & Trust (ABT) notified the Attorney General of Maine about a recent data breach that compromised the bank's computer system, allowing unauthorized access to consumers' sensitive information. Affected data includes names, dates of birth, Social Security numbers, financial account details, payment card information, and government-issued identification. ABT initiated the distribution of data...

PeakMed Colorado, LLC disclosed a recent breach to the U.S. Department of Health and Human Services Office for Civil Rights, initiated by the compromise of an employee's login credentials. This breach led to unauthorized access to a wide array of patient information, encompassing names, addresses, Social Security numbers, driver's license numbers, dates of birth,...

Stanley Steemer International, Inc. disclosed a recent breach, notifying the Attorney General of Maine after detecting unauthorized access to sections of its computer network. The breach exposed sensitive consumer data, encompassing names, Social Security numbers, driver's license numbers, and financial account details. Subsequently, the company initiated the dispatch of data breach notification letters to...

Rivers Casino in Des Plaines, Illinois, revealed a security breach occurring around August 12th, resulting in unauthorized access to personal information of both staff and customers, including online sportsbook users. The breach encompassed data such as names, contact details (phone numbers, emails, and postal addresses), dates of birth, and government-issued ID numbers. While the...

Tayview Medical Practice faces scrutiny following an inadvertent disclosure of patient information, wherein invoices containing patients' names, addresses, dates of birth, and private medical work details were mistakenly emailed to an individual patient on September 20. The breach, affecting patients registered at Tayport and Newport-on-Tay surgeries, involves approximately two years' worth of patient invoices. The...

Welltok, Inc., operating under Virgin Pulse, disclosed a substantial data breach impacting St. Bernards Healthcare, involving unauthorized access to sensitive consumer information. The breach, reported to the Attorney General of Maine on November 13, 2023, compromised a wide array of personal data, including names, Social Security numbers, dates of birth, health insurance details, medical...

The Bank of Canton recently reported a significant data breach stemming from a breach involving one of its vendors and the file-transfer application MOVEit, impacting consumers' sensitive information. The breach, disclosed in a notice to the Attorney General of Massachusetts on October 23, 2023, resulted in unauthorized access to customer data, including names, Social...

Global healthcare distributor Henry Schein has escalated its October 15th "cyber incident" to a confirmed "data breach," disclosing that sensitive information, including bank account and credit card details, has been compromised. Separate notices sent to both customers and suppliers on November 13th updated stakeholders on the ongoing investigation. The notice acknowledges that customer and personal...

Medical Eye Services, Inc. (MESVision), a vision care provider headquartered in Santa Ana, California, disclosed a recent data breach due to a critical vulnerability in its software, MOVEit, utilized by the company. The breach resulted in unauthorized access to sensitive consumer data, including names and Social Security numbers. MESVision reported the breach to the Attorney...

In a recent development, three Connecticut hospitals managed by Prospect Medical Holdings encountered a cyberattack and subsequent data breach in August. The FBI intervened, while the White House closely monitored the situation. A disclosed letter sent to the Office of the Connecticut Attorney General revealed that nearly 110,000 residents received notifications this week, indicating their...