Here are the top stories of recent weeks:
- Google Issues Warning For 2 Billion Users
- 33,000 Patients Medical Records Affected by AMCA Data Breach
- The Presbyterian Healthcare System Breached Via Phishing Scam – Affecting 183K Patients’ Data
- Wisconsin Diagnostic Laboratories, Yet Another Victim in The AMCA Data Breach, Alerts 114,000 Affected Customers
- Hostinger Under Investigation Due to a Data Breach That May Affect 14 Million Customers
A new warning has been issued by Google after researchers, Luyao Liu and Zhe Jin, claim $5,500 in rewards for disclosing a vulnerability. The bug grants malicious entities access to Google Chrome users’ devices, remotely. The attackers could then achieve remote arbitrary code execution, bypassing security protocols, and ultimately obtaining sensitive information. Google claims that the entities at high risk are government officials and business entities. The warning serves as a double-edged sword because although Google is proactively trying to prevent any breaches, you can bet that threat actors are aware of the warning and will be actively looking for vulnerable endpoints.
The AMCA (American Medical Collection Agency) reported a breach that potentially affected 33,000 Mount Sinai patient records. The Mount Sinai health system, based in New York City, is one of the largest and oldest hospitals in the United States. It has reportedly warned the patients of the potential data leakage that in some cases includes their financial information. AMCA was contracted by Mount Sinai to handle the billing collection services. However, since the breach, the hospital system has stopped doing business with the billing collection agency.
The Presbyterian Healthcare Services is a private healthcare provider in New Mexico, with eight hospitals, and over 12,000 employees. 183,000 patients have been notified about the recent systems breach, which occurred due to a phishing attack on various employee email accounts. The leaked data includes patient names, Social Security numbers, birthdates, and clinical health plan information. Since the breach, Presbyterian has offered credit monitoring and identity protection services to patients that were affected. New security measures have been implemented to its email system, requiring yearly employee training to prevent any future breaches.
Wisconsin Diagnostic Laboratories (WDL) is the 23rd company affected in the AMCA (American Medical Collection Agency) data breach. The web payment portal asserted to WDL that 114,000 patients’ files were compromised in the breach. The data includes patient name, dates of birth, dates of service, names of lab or medical service providers, referring physicians’ names, balance owed, and other medical information. Additionally, a few patients may also have had their financial information exposed. Since the AMCA breach, there has been a total of 25 million accounts that have reportedly been leaked.
Hostinger hosts data for over 29 million customers, and 14 million have reportedly been compromised in this recent data breach. The data includes account credentials, but Hostinger claims that no financial information has been leaked. However, a full investigation has ensued to gauge the full scope of the breach. Customers have complained, stating that the web host has not been completely transparent with the victims of the breach. There are concerns regarding the methods used to gain access to the company’s API database. The database is said to store customer financial data, login information, and more.
To learn about cloud access security brokers (CASBs) and how they can protect your enterprise from data leakage, malware, and more, download the Top CASB Use Cases below.