Georgia-based correctional health provider CorrectHealth has been impacted by a cyberattack last November that compromised data belonging to 54,000 individuals, HealthITSecurity reports.
Suspicious activity in employee email accounts was identified by CorrectHealth on Nov. 10, 2021, with the provider investigating the information that may have been exposed between March and July 2022, where names, addresses, and Social Security numbers were found to have been compromised, according to a breach notice sent by CH to the Maine Attorney General's Office.
"Additionally, CH issued a company-wide password reset for all employees, employed an advanced phishing service for CHs email tenant, began putting disclaimers on all externally received emails, implemented Multi-Factor Authentication for all administrative staff, began rolling out a Single Sign On solution for clinical staff, and effected weekly data security and monthly simulated phishing training for all employees," said CH, which added that there has been no evidence of any attempted abuse of the exposed data.
The U.S. Federal Communications Commission imposed $196 million in total fines to AT&T, T-Mobile, and Verizon for engaging in the unlawful sale of customers' location information to data aggregators, reports The Record, a news site by cybersecurity firm Recorded Future.
BleepingComputer reports that U.S. nationally licensed debt collection agency Financial Business and Consumer Solutions had information from more than 1.95 million individuals across the country compromised following a data breach in February.
U.S. independent record label Empire Distribution, which has worked with Kendrick Lamar, Snoop Dogg, and 50 Cent, had its sensitive data exposed as a result of an environment file misconfiguration, Cybernews reports.
Get daily email updates
SC Media's daily must-read of the most current and pressing daily news