Week in Breach

This week, hackers continue to phish for patient data from US healthcare providers, a British police website goes down, and Australians see a spike in credential stuffing attacks.

Dark Web ID Trends:
Top Source Hits: ID Theft Forum (99%)
Top Compromise Type: Domain (99%)
Top Industry: High-Tech & IT
Top Employee Count: 11 – 50 Employees


United States – Equitas Health

Exploit: Employee email account breach
Equitas Health: Regional, a not-for-profit healthcare provider based in Ohio
>> Read full details on our blog.


United States – Oregon State Hospital

Exploit: Spear phishing attack
Oregon State Hospital: Public psychiatric hospital based in Salem, Oregon
>> Read full details on our blog.


United States – Pacers Sports & Entertainment

Exploit: Employee email phishing campaign
Pacers Sports & Entertainment: 
a Parent company of the Indiana Pacers, a professional basketball team in the NBA
>> Read full details on our blog.


United States – Southeastern Council on Alcohol and Drug Dependence

Exploit: Ransomware
Southeastern Council on Alcohol and Drug Dependence: Non-profit organization based in Norwich, Connecticut offering alcohol and substance abuse treatment
>> Read full details on our blog.

United States – Ada County Highway District 

Exploit: Ransomware
Ada County Highway District: Independent government agency operating in Garden City, Idaho
>> Read full details on our blog.

United States – Medical Oncology Hematology Consultants

Exploit: Phishing Scam
Medical Oncology Hematology Consultants: Healthcare network offering cancer treatment solutions
>> Read full details on our blog.

UK – British Transport Police

Exploit: Website hack
British Transport Police: National special police force charged with protecting the light-rail systems in England, Scotland, and Wales
>> Read full details on our blog.


Singapore – Red Cross

Exploit: Unauthorized website access
Singapore Red Cross: Humanitarian organization supporting blood drive initiatives, disaster relief, and emergency assistance
>> Read full details on our blog.

In Other News:

65,000 Data Breaches Reported Under GDPR

From the onset, it was clear that Europe’s expansive privacy law, the GDPR, would have drastic effects on the way companies approach data security and customer privacy. Now, the first report by the European Data Protection Board, an independent oversight committee established as part of GDPR, helps us understand the overall impact thus far…

Read more