Cyber Risk News

We bring to your attention a sampling of recent media stories involving cyber risk & privacy liability. Among the stories we’re highlighting this month: Conti Group Suffers Massive Data Breach, Ukraine Said Government Websites and Banks Suffered a Massive DDoS Attack, Top 10 cyber insurance providers in the US in 2022, 5 healthcare organizations facing lawsuits over data breaches, and more.

Ransomware Corner

Conti Group Suffers Massive Data Breach

A notorious ransomware outfit has been given a taste of its own medicine after a vast trove of internal chat data was leaked by a Ukrainian researcher. The leaks were posted online yesterday with rough Google Translate versions of the text in English here. They amount to tens of thousands of messages taken from Conti’s Jabber server. Click to read entire article.

Nvidia confirms breach, proprietary data leaked online

Nvidia has confirmed some of the claims from a little-known ransomware gang that allegedly broke into the network of the GPU giant and stole corporate data. Click to read entire article.

Manufacturing

Bridgestone Americas ‘disconnects’ manufacturing facilities following ‘security incident’

Bridgestone Americas has reportedly “disconnected” many of its manufacturing and retreading facilities after suffering a possible cyber-attack yesterday morning (February 27). According to reports, the automotive giant has said it is so far unable to “determine with certainty the scope or nature of any potential incident”. Click to read entire article.

Public Entity/Gov

Data breach at OK Department of Human Services may have leaked people’s personal information

OKDHS, along with its partner Liberty of Oklahoma Corporation, says thousands of people’s personal information might have been stolen or compromised in the breach if they were on the Oklahoma Waitlist Program. Click to read entire article.

260,000 confidential attorney discipline records published after data breach, State Bar of California says

An anonymous administrator for judyrecords.com said in a note on the website that the records, as well as others it intended to publish, had been deleted in response to the State Bar’s disclosure of the breach and a subsequent Southern California News Group article. Click to read entire article.

Telecom

Attorney General Knudsen Alerts Consumers Impacted by the Massive 2021 T-Mobile Data Breach to Take Steps to Protect Their Personal Information

HELENA – After nearly 37,000 Montanans had their personal information compromised by a massive T-Mobile data breach, Attorney General Austin Knudsen is urging all Montanans who may have been impacted to take appropriate steps to protect their information from identity theft. T-Mobile announced the breach last year but compromised information has recently been for sale on the dark web. Click to read entire article.

Ukraine Crisis

Ukraine Said Government Websites and Banks Suffered a Massive DDoS Attack

The Ukraine government officials have claimed that again multiple government and banking organizations’ portals have experienced a massive DDoS attack recently. All these cyberattacks have been developed by the threat actors over the past few months and after such a brutal attack several information systems become not operable. Click to read entire article.

Healthcare/ HIPAA

PHI of 10,000 Individuals Exposed Due to Houston Health Department Portal Glitch

The Houston Health Department has recently announced that the personal information and COVID-19 test results of 10,291 individuals have been exposed online as a result of a technical issue with its portal. The issue allowed approximately 3,500 portal users to access the data of other individuals. Click to read entire article.

Audit finds security breaches from Connecticut Health Insurance Exchange not reported

The incidents, one of which impacted 1,100 people, happened from 2017 to 2021. Click to read entire article.

5 healthcare organizations facing lawsuits over data breaches

Cybercriminals are continuing to attack healthcare organizations at an alarming rate. These attacks bring negative consequences to healthcare systems’ operations and finances in several ways, one of them being data breach lawsuits. Click to read entire article.

Data Breach Class Action Exposure

Data Breach Alert: St. Augustine College

Recently, St. Augustine College confirmed that the school experienced a data breach resulting in the names and Social Security numbers of certain individuals being compromised. The data breach lawyers at Console & Associates, P.C. are going to begin interviewing victims of the breach to determine what damages they sustained and what legal claims may be available to them. Click to read entire article.

Data Breach Alert: Advantage Title & Escrow, LLC

Recently, Advantage Title & Escrow, LLC confirmed that certain consumer data was compromised after an unauthorized party gained access to two employee email accounts. Click to read entire article.

Waste Management Company Beats Employees’ Data Breach Lawsuit

USA Waste-Management Resources LLC beat a proposed class suit alleging it failed to prevent the theft of employee personal information in a data breach, in part because the plaintiffs failed to allege how the company breached any duty of care, a federal court in New York said Thursday. Click to read entire article.

Ill. Accounting Firm Sued Again Over Delayed Breach Notice

Chicago accounting firm Bansley & Kiener LLP was hit Wednesday with another proposed class action accusing it of mishandling sensitive information and improperly delaying disclosure that it had been hit by a ransomware attack. Click to read entire article.

Financial Services

Capital One $400mn tower now fully reserved in largest-ever cyber risk loss

The $400mn cyber program for Capital One is now fully reserved as insurers expect a full-limit loss related to the bank’s 2019 data breach, this publication can reveal. Click to read entire article.

Cyber Insurance

Top 10 cyber insurance providers in the US in 2022

The rapid pace of digital transformation within businesses in recent years has also given rise to unique and evolving cybersecurity challenges, which have prompted companies to find new ways to protect themselves from damaging attacks. Click to read entire article.


Vol. 242 – March 16, 2022

Download 2021 Cyber Claims Study

The annual NetDiligence® Cyber Claims Study uses actual cyber insurance reported claims to illuminate the real costs of incidents from an insurer’s perspective.

Download

© 2022 NetDiligence All Rights Reserved.