Weekly Cybersecurity Recap June 9
- By Steven
- Published: Jun 09, 2023
- Last Updated: Jun 09, 2023
Data breaches are a serious risk that can lead to a substantial amount of lost information annually. This week financial, legal, health, and education sectors were all hit. Major health insurance providers like MCNA and Harvard Pilgrim were exposed, legal company Casepoint suffered substantial data losses, the University of Rochester was hit, and Capital One also suffered significant losses. With so many major companies being targeted and exposed by breaches, it's essential for you to protect yourself now more than ever. Keep reading to learn the specifics of these data breach cases.
MCNA
MCNA is a health insurance provider that works with dental clinics, dental offices, orthodontic facilities, and more to provide care for children and Medicaid recipients. This organization manages data for millions of individuals, and some of the personal and health information was stolen during a March 6, 2023, attack by a ransomware gang. The gang managed to take health insurance data, Social Security numbers, government ID numbers, healthcare data, and more. If you rely on MCNA for your insurance coverage, you should take steps to protect yourself because it's unclear whether MCNA paid the $10 million ransom being asked or not.
Casepoint
Casepoint is a huge eDiscovery company that manages data for the US Federal and State governments, as well as large-scale hotel chains and other major industries in the country. The health of many legal cases relies on security and protection from Casepoint, and ransomware gang ALPHV infiltrated the company's file servers on May 30, 2023. A significant number of legal documents, medical information, internal government messages, and much more were stolen through this breach.
University of Rochester
Although there are still few details about the incident, the University of Rochester - a mid-sized public school in Rochester, NY - recently suffered from a reported data breach. The school has an ongoing staff directory of over 30,000 individuals and enjoys an enrollment of 12,000 students annually, and all of those individuals could be impacted by this data breach. We don't know what data was taken from those involved, but students and staff members have been urged to update their passwords in an effort to protect themselves.
Harvard Pilgrim Health Care
On May 24, Harvard Pilgrim Care filed a notice with the Maine Attorney General explaining how the insurance provider was attacked by a ransomware group. The gang used a coordinated attack to access key health and personal details in an effort to force the provider into paying a ransom. The company serves millions of people throughout Maine, Connecticut, Massachusetts, Rhode Island, and New Hampshire, and many of those patients were exposed by the breach and could suffer from identity theft and phishing attacks as a result.
Capital One
During the beginning of February of this year, approximately 16,779 Capital One customers were exposed during a data breach at partnering company NCB Management Inc. The breach resulted in the loss of Social Security numbers, first and last names, home addresses, Capital One bank account numbers, account status data, and more. All that information could lead to serious identity theft issues. Capital One reported the incident with the Maine Attorney General's office on May 26, 2023, and sent out individual notices to anyone it believes is exposed by the issue on the same day.
