Pennsylvania-based nonprofit health provider Maternal & Family Health Services has confirmed cybercriminals accessed the sensitive data of close to half a million people.
MFHS revealed last week that it had been hit by ransomware that exposed the personal data of current and former patients, employees and vendors. The healthcare giant said it was made aware of the incident on April 4, 2022 but admitted that may have been initially compromised as far back as August 21, 2021.
When asked by TechCrunch at the time, MFHS declined to confirm how many individuals were affected. However, a notification from the Maine attorney general’s office this week reported that a total of 461,070 people, including 68 Maine residents, are affected by the breach.
In a letter sent to affected residents on January 10 — more than nine months after the organization was first alerted to the ransomware incident — MFHS said that attackers accessed sensitive data, including names, addresses, date of birth, driver license numbers, Social Security numbers, usernames and passwords, health insurance and medical information, and financial information. The attackers also took credit and debit card numbers, the notification said.
It remains unclear who was behind the ransomware attack, if MFHS paid a ransom demand and why the nonprofit didn’t disclose the incident sooner. MFHS didn’t immediately respond to TechCrunch’s questions on Wednesday, and it doesn’t appear that any major ransomware group has yet claimed responsibility for the incident.
https://techcrunch.com/
The website for ODIN Intelligence, a company that provides technology and tools for law enforcement and police departments, was defaced on Sunday. The apparent hack comes days after Wired reported that an app developed by the company, SweepWizard, which allows police to manage and coordinate multi-agency raids, had a significant security vulnerability that exposed personal information of […]
In late April, police in Nebraska received a tip saying 17-year-old Celeste Burgess had given birth to a stillborn baby and buried the body. Officers soon learned that her mother, Jessica Burgess, and a friend had helped her with transportation and burial. The police issued citations for concealing the death of another person and false reporting. But […]
Every developer knows that it’s a bad idea to hardcode security credentials into source code. Yet it happens and when it does, the consequences can be dire. Until now, GitHub only made its secret scanning service available to paying enterprise users who paid for GitHub Advanced Security, but starting today, the Microsoft-owned company is making […]
Leave a Reply