Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

August 2023

16 Hospitals Lose Data in Prospect Medical Holdings Breach

Prospect Medical Holdings is an umbrella company with over 16 separate hospitals throughout Pennsylvania, California, Rhode Island, and Connecticut. The company manages a huge amount of information between all those different hospitals, and all that data could easily be misused if the wrong individuals accessed it. Prospect Medical Holdings was recently the victim of a data breach, though the company itself did not announce that information to the world.

Millions Potentially Impacted by Blue Cross of Illinois Breach

Blue Bross and Blue Shield of Illinois is the largest insurance company in Illinois, serving over 8.9 million individuals. The company handles a huge amount of medical information and is responsible for ensuring that millions of people have the medical and dental insurance they need. The company recently discovered it was indirectly the victim of a data breach and that some of its customers were at risk. Learn more about the breach below.

Over 7 Million Alumni Hit in the University of Minnesota Data Breach

The University of Minnesota is a large research school based in Saint Paul and Minneapolis. The school works with more than 50,000 students annually and protects data from them over time. The major Minneapolis-based university was recently the victim of a data breach, and millions of past and present students could be impacted by it. Get all the details about this horrendous attack below.

TMX Finance Suffers a Breach Exposing Nearly 5 Million

TMX Finance and related companies are all involved in crisis loans and emergency lending programs. The companies handle financial data for a huge number of individuals throughout the United States, and the different individuals involved with the company could be at risk for this reason. We recently learned that TMX Finance suffered from a data breach that exposed data for nearly 5 million people. News of the breach was just released, but victims may have been exposed for months now.

Weekly Cybersecurity Recap August 25

Data breaches are quickly becoming one of the most damaging crimes committed today and one of the most common. Hackers are stealing valuable information from organizations at a rapidly growing rate, which means your data isn't safe for anyone. Major companies like Tesla, M&T Bank, and Duolingo were all hit by breaches this week, as well as Missouri Medicaid, the University of Missouri, and UMass Chan Medical School.

Over 2.6 Million DuoLingo Customers Lose Data to Breach

DuoLingo is a massive language learning service that provides lessons to more than 74 million users around the world. The service offers short language lessons via a set of apps and is designed to help users learn new languages. Duolingo doesn't store a huge amount of information about its users, but it does have enough data on its users for it to be problematic if the information is lost.

Over 95k M&T Bank Customers Lose Data in Recent Breach

M&T Bank was established in 1856 and is one of the largest banks in the US. It is based in Buffalo, New York, and currently has over 1,000 branches in 12 separate states. The bank houses data for hundreds of thousands of individuals, and some of that information may be at risk because of a recent breach. Learn all about the 2023 M&T Bank data breach below.

Missouri's Medicaid Program and Mizzou Impacted By Recent Data Breaches

The state of Missouri's low-income Medicaid program through the Department of Social Services is responsible for offering medical insurance to Missourans in need. The program ensures that citizens have access to reliable healthcare with minimal costs to them. The University of Missouri, or Mizzou, is a public research institute that was founded in 1839 and serves as Missouri's largest university. Both of these programs were attacked in the recent MOVE-it data breach.

More than 134K UMass Chan Medical Students Suffer from Recent Breach

UMass Chan Medical School is a public medical school located in Worcester, Massachusetts. The school was founded in 1962 and is part of the University of Massachusetts college system. The school is one of the few medical school locations in the United States with FDA approval to manufacture vaccinations. It serves a small number of students but handles important tasks while offering highly specialized training to its students.

Two Tesla Employees Expose Confidential Company Data

Tesla, an Austin-Texas-based automaker specializing in electric vehicles, employs more than 127,000 workers worldwide today. The automaker has an annual revenue of 53.8 Billion USD and is a significant company that employees rely on to protect their data. Recently, two Tesla employees gave away information that resulted in a breach that could significantly impact workers.

Tennessee Employees Lose Their Data to Consolidated Retirement System Breach

The Tennessee Consolidated Retirement System is a retirement and benefits program administered to many full-time employees throughout the state. If you are an employee within the state of Tennessee, there's a good chance that your data is tied up in this system and that you're relying on the program administrators to protect your personal and financial information.

Weekly Cybersecurity Recap August 18

Financial institutions and state government agencies were the main targets of hackers this week. Major organizations like Bank of America and Hospitality Staffing Solutions were hit hard resulting in huge data losses for citizens, and the states of Pennsylvania, Vermont, and Tennessee each experienced major data losses in their regulatory bodies or programs. Learn more about each of these serious data breaches and find out if your information is safe.

11K Bank of America Customers Lose Data to Breach

Ernst and Young is one of the leading consulting companies that helps with strategic and transactional taxes. The company offers excellent services to other major companies and handles a large amount of financial and personal data for all the customers impacted by them. This organization works with major clients like Bank of America, which is now more than 11,000 Bank of America customers were exposed in a recent data breach involving this company.

Thousands Impacted By PA Child Care Works Breach

The Pennsylvania Child Care Works program helps low-income families pay for their childcare costs. The program offers a portion of the childcare payment amount, and the families pay the rest. This system helps citizens throughout Pennsylvania get access to quality childcare. To qualify to use the system, applicants must fill out paperwork containing personal and financial information. This data is used to verify that they meet all the requirements of the program.

Hospital Staffing Solutions Suffers a Data Breach Exposing Over 100K Individuals

Hospitality Staffing Solutions is a short-term employment provider or temp agency that sends workers to a variety of hospitality-related organizations. Companies such as restaurants, hotels, colleges, casinos, senior living, and some light industrial establishments rely on workers provided by the company. The organization employs over 10,000 people and earns an estimated $4.3 billion in revenue annually.

Vitality MOVEit Data Breach Impacts GuidePoint

The Vitality Group, LLC, a business-to-business vendor that provides employee benefit services to GuidePoint Security, experienced a security vulnerability on May 30, 2023 relating to the third-party file transfer program called MOVEit. The zero-day vulnerability became known in established security networks and channels late on May 31, 2023, and was specifically picked up and identified by internal Vitality security personnel on June 1, 2023.

The Vermont Dept of Financial Regulation Gets Breached, Exposing 42K Residents

The Vermont Department of Financial Regulation is an organization that oversees the financial sector within the state. The department is split into four divisions: Securities, Banking, Captive Insurance, and Insurance. Any businesses involved in these companies must answer to this department, and many Vermont residents have supplied the department with information to help it carry out its everyday role.

Weekly Cybersecurity Recap August 11

New companies are hurt by significant data breaches every week, especially in the United States. This week insurance companies were the big target. Prudential, Progressive, and a range of insurance providers that work with PH Tech were all hit by data breaches. Allegheny County, Pennsylvania, and the Colorado Department of Higher Education were also victims of their own data breaches. Millions of individuals were exposed to potential data losses between these different breaches.

Prudential Insurance Hit By MOVEit Breach Involving Over 320k Customers

Prudential Insurance Company of America is one of the largest financial services and insurance companies in the United States today. The organization is based in Newark, New Jersey, and manages over $1.377 trillion in assets for consumers in the US. The company employs over 39,000 workers and handles data for countless customers each year. Each of those customers was potentially damaged when Prudential suffered a serious data breach that released confidential information to attackers.

Progressive Insurance Hit By a Data Breach Putting 347,100 Customers at Risk

Progressive is a large insurance company based in Mayfield Village, Ohio. The company is known throughout the United States and other parts of the world and is responsible for insuring many US citizens. The organization employs over 49,000 workers and generates an estimated $48 billion in annual revenue. Since Progressive is an insurance company, it handles personal data, medical information, and other sensitive details about individuals.

Colorado Public School Students at Risk Because of Department of Education Breach

The Colorado Department of Higher Education is the government organization responsible for overseeing public education throughout the state. The organization implants most education-related policies and also manages data for educational institutions. This organization recently suffered from a significant data breach, leading to information losses for students associated with public schools throughout Colorado. It's an issue that could result in widespread data losses.

Allegheny County PA the Latest MoveIT Data Breach Victims on the List

Allegheny County is the second largest county in Pennsylvania, behind Philadelphia County. It is located in Southwest Pennsylvania and has approximately 1.2 million residents. This large county was the recent victim of a data breach, which means many of the county residents could be at risk of being exposed. Learn the details about this potentially disastrous data loss and who should react to the attack to protect themselves from future issues.

1.7 Million Oregon Health Users Lose Their Data to a PH Tech Breach

PH Tech is a specialized services company that works with health insurance companies providing some of their business and administrative services. The company employs 211 people and serves a variety of businesses throughout Oregon and other locations. Because this company manages insurance enrollment, various customer service tasks, and payment services, the organization handles a great deal of personal and medical data that could have been exposed during the latest data breach.

Weekly Cybersecurity Recap August 4

Each week we look at the data losses, hacker attacks, and the state of security in the United States and around the world. This week things seem to be particularly bleak. We always expect to see some breaches in major companies, but this week we learned about widespread employee credential losses in countless corporations throughout the United States and the world.

Fairfax Oral and Maxillofacial Surgery Gets Hacked Losing Data for Over 208k

Fairfax Oral and Maxillofacial Surgery, or Fairfax OMS, is a dental practice that first opened in Burke, Virginia, in 1980. The organization offers a mix of dental surgery services, such as bone grafting, wisdom tooth extraction, dental implants, and more. The organization accepts patients in Washington, D.C., Maryland, and six separate locations throughout Virginia. There are more than 87 employees in the organization, and it generates about $16 million in annual revenue.

MSU Students Could Lose Data in MOVEit Data Breaches

Michigan State University is a large school located in East Lansing, Michigan. This public university has more than 49,000 students per semester and is set over a location spread across 5,300 acres. The university caters to hundreds of thousands of students over time, many of whom may have been exposed due to a recent data breach. The breach wasn't on the university itself, but it likely impacted many of the students attending Michigan State.

Account Takeover (ATO) Fraud: What Is It and How It Happens

The impacts of account takeover fraud are genuine. According to the Javelin 2022 Identity Fraud Study, 22% of U.S. adults have been victims of account takeover attacks. This type of fraud can have devastating financial and personal consequences when criminals gain access to accounts and exploit them for theft and abuse. Understanding account takeover and how it happens enables individuals and businesses to better detect and prevent these schemes.

PokerStars Suffers Serious Data Breach Exposing 110k People

PokerStars is one of the largest online poker rooms in the world and has millions of registered customers that use the platform to play remotely with others from different areas of the world. The company is well-known for providing poker and other card-game services and is part of a larger gambling network with more organizations. The company houses data for millions of users that access the platform, and some of that data was just accessed in a recent breach.

Corporations are Losing Login Credentials at an Alarming Rate, Says Flare

Major businesses from around the world are losing valuable login credentials at a rapid rate. Huge corporations are going through applications with platforms like Hubspot, Salesforce, AWS, Google Cloud Platform, DocuSign, and so many others, and during the process, they are losing valuable login credentials. Huge numbers of businesses are being compromised by hackers looking at these many different services, and it's becoming a very real problem that most companies aren't talking about today.