Mental health services provider, Equilibria Mental Health Services, fell victim to a phishing attack this June that exposed the personal information of at least 500 patients in Philadelphia.
This incident occurred after Equilibria patients received a phishing email from a “compromised address.” These phishing emails contained a document that the patients were tricked into filling out and signing. Information compromised in this attack includes mailing addresses, phone numbers, health insurance information, and the reason for the patient seeking mental health services with Equilibria.
Investigation is ongoing and authorities have been contacted to assist, and the mental health services company is evaluating and acting on ways to strengthen cybersecurity measures and avoid future incidents.
(–Source: FOX 29 Philadelphia on MSN
Read More: 500 people in Philadelphia impacted by data breach at mental health services company )
The personal and health information of 2.7 million DaVita patients was compromised in a cyberattack in April of this year after attackers gained unauthorized access to the kidney dialysis company’s servers via a ransomware attack.
As soon as DaVita detected the intrusion, its incident response plan was initiated and the unauthorized party was pushed out of the system same day. While the hackers were in DaVita’s systems, they could have accessed patient information such as name, address, birth date, SSN, health and treatment information, and, in rare cases, tax identification numbers and photos of personal checks issued to the company.
Credit card and identity theft monitoring services were offered to affected patients following the attack.
(–Source: Cybernews
Read More: Ransomware attack on healthcare giant DaVita exposed data of nearly 2.7m people )
Following the Google Salesforce database compromise earlier this month carried out by hacker group ShinyHunters, Google confirmed that data linked to 2.5 billion Gmail accounts has been exposed.
The incident occurred after the hackers tricked a Google employee into disclosing login credentials, giving the hacking group access to the system. While the stolen information contained “largely publicly available business information, such as business names and contact details,” reports from the UK quickly came rushing in, stating that affected users were receiving a surge in calls, emails, and text messages claiming to be directly from Google. These phishing and vishing attempts involved the attackers telling users to reset their password and provide login codes.
(–Source: Security Daily Review
Read More: Gmail Breach Exposes 2.5 Billion Accounts in Social Engineering Attack – Security Spotlight )
After launching an investigation following a third-party vendor detecting unauthorized access to one of its databases and notifying Farmer’s Insurance of the incident, the insurance company discovered it had fallen victim to a cyberattack, compromising the sensitive information of more than 1 million people.
This incident was discovered on May 30th of this year and was followed by a 2-month-long investigation, in which the insurance company determined that the compromised information includes names, birth dates, driver’s license numbers, and the last 4 digits of SSNs.
While no threat actors have claimed responsibility, nor have there been any signs of the stolen information being abused, Farmers is offering affected individuals two years of free identity theft protection, and urges customers to be cautious of any communications they receive claiming to be from the company.
(–Source: TechRadar Pro on MSN
Read More: Farmers Insurance data breach sees over a million customers hit – here’s what we know )
