Here’s your weekly #databreach news roundup:
South Plainfield residents, Gannon Associates Insurance Agency, Clinivate, Wilson Tool International, Italian Internal Revenue Service (L’Agenzia delle Entrate), The Western Australian Arts and Culture Trust (WA ACT), and PolicyBazaar.
South Plainfield residents
An assistant in the municipal clerk’s office deleted confidential documents and files as well as borough incoming and outgoing emails, but before doing so he placed them on a personal thumb drive, according to a letter sent to residents who may have been affected by the data breach.
Borough officials discovered the breach in February but did not notify the affected residents until this month. Mayor Matt Anesh, Borough Clerk Amy Antonides and the South Plainfield Police Department all declined to offer any further information, citing an ongoing investigation. None would comment on why residents were not notified sooner.
Gannon Associates Insurance Agency
Gannon Associates Insurance Agency reported a data breach after the company experienced an “information security incident.” According to Gannon, the breach resulted in the full names, Social Security numbers and driver’s license numbers of certain individuals being compromised. After confirming the breach and identifying all affected parties, Gannon Associates began sending out data breach letters to all affected parties.
Pasadena-based Clinivate has notified its customers of a data security incident that may have divulged the protected health information of individuals within Clinivate’s electronic health record system.
Clinivate first learned of the breach in March after discovering unusual activity in its digital ecosystem. With assistance from an independent digital forensics firm, Clinivate soon launched an investigation to assess the hack.
By May, the company was alerted to certain compromised systems and files. There were also instances of unauthorized data access between March 12 and March 21, 2022.
A letter was sent to the potentially affected individuals on July 22 to notify them of this incident.
As confirmed by Clinivate, the impacted information may have included individuals’ names, Social Security numbers, medical record numbers, health plan beneficiary numbers, treatment information, and diagnosis information, among other medical information, and/or information relating to payment(s).
Wilson Tool International
Wilson Tool International reported a data breach after the company discovered that an unauthorized party accessed and encrypted certain files on the company’s network. After confirming that the company was the victim of a ransomware attack and identifying all affected parties, Wilson Tool began sending out data breach letters to all affected parties. However, Wilson Tool has not publicly disclosed the data types that were compromised in the ransomware attack.
Italian Internal Revenue Service (L'Agenzia delle Entrate)
Italian authorities are investigating claims made by the LockBit ransomware gang that they breached the network of the Italian Internal Revenue Service (L’Agenzia delle Entrate).
LockBit claims they stole 100 GB of data (including company documents, scans, financial reports, and contracts) that will be leaked online if the Italian tax agency doesn’t pay a ransom demand until August 1st.
The Italian revenue agency shared an official statement on its website regarding “the alleged theft of data from the tax information system,” saying that it requested more info from Sogei (Società Generale d’Informatica) SpA, a Ministry of Economy and Finance public company that manages the financial administration’s technological infrastructure.
“From the technical investigations carried out, Sogei excludes that a cyber attack on the Agency’s website may have occurred,” the agency said.
The Western Australian Arts and Culture Trust (WA ACT)
The Western Australian Arts and Culture Trust (WA ACT) has disclosed that some of its customer data may have been exposed by a security incident involving its email service provider WordFly.
The WA ACT manages arts and entertainment venues across Western Australia, including His Majesty’s Theatre, Subiaco Arts Centre, State Theatre Centre of Western Australia and Albany Entertainment Centre.
In an advisory sent to customers, the agency said it was informed by WordFly that it was subjected to a cybersecurity incident.
“It has come to our attention that your email address and other non-sensitive data you have shared with our organisation may have been exposed during a cybersecurity incident impacting a vendor we contract with for the communication software we use,” the advisory read.
Indian online insurer Policybazaar said on Sunday that it was subject to an unspecified security incident but found that “no significant” customer data was exposed — or in other words, some was.
Policybazaar, which sells a range of insurance coverage, said in a stock exchange filing that its IT systems were subject to “illegal and unauthorized access” and it is engaging with the authorities to take recourse.
The firm claims on its website that it serves over 9 million customers.