At a glance.
- D#nut ransomware group publishes data allegedly stolen from US hospital.
- Third-party data breach exposes Uber driver data.
- Service NSW website update accidentally exposes user data.
D#nut ransomware group publishes data allegedly stolen from US hospital.
Over the weekend Montgomery General Hospital (MGH), a healthcare provider located in the US state of West Virginia, disclosed it suffered what might have been a ransomware attack. A member of the D#nut ransomware group announced the alleged attack on cybercrime forum databreaches.net, stating that the cybergang exploited a Microsoft Exchange vulnerability in order to infiltrate MGH’s computer network. MGH engaged in ransom negotiations with the threat actors but chose not to meet the hackers’ $750,000 ransom demand. In the end D#nut chose to leak the stolen data, which allegedly includes Social Security numbers, patient diagnoses and treatment plans, and health insurance billing records. JDSupra notes that MGH has not officially confirmed that the leaked data belongs to its patients, but an investigation is underway.
Third-party data breach exposes Uber driver data.
Uber has been impacted in a data breach at law firm Genova Burns, which provides the popular rideshare app with legal counsel. The firm, which has been investigating the incident, has sent a notification letter to impacted Uber drivers notifying them of the breach. It states that the intruder had access to their network between January 23 and January 31 of this year, and that driver data including names, Social Security numbers, and/or Tax Identification numbers were compromised in the breach. Uber released a statement explaining, “In March we were notified by outside legal counsel, Genova Burns LLC, that they had suffered a security incident. Impacted information held by Genova Burns included information of certain drivers who had completed trips in New Jersey, including social security number and/or tax identification number. “ Genova Burns has informed law enforcement of the breach, and has also taken steps to strengthen their network security, including resetting all system passwords. The Register adds that this is Uber’s second third-party data breach in recent months, as last year a cybercriminal going by the name of UberLeaks infiltrated the network of software provider and Uber supplier Teqtivity, and published the data of over 77,000 Uber and UberEats employees on cybercrime website BreachForums.
Service NSW website update accidentally exposes user data.
Australian government department Service New South Wales (NSW) has alerted approximately 3,700 customers that their personal data might have been inadvertently exposed during a system update. Chief executive Greg Wells said an update to the Service NSW website on March 20 resulted in some customer’s data being visible to other customers for about ninety minutes. The exposed data include drivers licenses, vehicle registration info, children’s names, and phone numbers, and the issue impacted only customers who were logged into the website at the time of the update. The email notification to customers states, “You may have seen other people’s personal information, or that other people may have seen your personal information in error. The personal information was not searchable.” A Service NSW spokesperson told News.com, “Our priority is the safety and security of every customer affected by the incident, and we are committed to ensuring customers feel supported.” A detailed investigation and review of the incident are ongoing.