Late last week, officials for the City of Abilene in Texas identified a cyberattack that was targeting their internal network and worked quickly to take the affected systems offline. As the investigation into this incident continues, some operations are still offline, though systems that control emergency services have remained functional. It remains unclear if any customer or employee information was compromised during this attack, and staff are working to continue processing utilities payments while offering leniency for late payments due to this issue.
Legends International confirms data breach
It has recently been revealed that the venue management firm, Legends International, suffered a data breach in November of last year and has confirmed that both employee and customer data has been compromised. As the management firm for more than 350 entertainment venues around the world, the impacts of this incident could be astronomical, though there hasn't been any word on the types of data that was stolen, nor the number of affected individuals. No ransomware group has yet claimed responsibility for this breach, but there is a chance that negotiations are underway for the return or deletion of the exfiltrated data.
Marks & Spencer suffers critical security incident
Over the weekend, staff for the British retailer Marks & Spencer identified some unusual activity on their systems that was causing disruptions to their in-store payment services. The company is working with third-party experts to investigate this intrusion into their systems, but it is believed that no customer data has been affected, nor has there been any indicators that ransomware was deployed or files encrypted.
Blue Shield of California exposes health data for millions
It was recently discovered that due to a misconfiguration of Google Analytics, sensitive health data for 4.7 million Blue Shield of California patients was shared with Google’s advertising platforms and third-party advertisers. The subsequent investigation revealed that this leak was active from April 2021 to January 2024 and exposed a significant amount of personally identifiable information, including insurance plan data and extensive health claim data. This is the second security incident Blue Shield has faced this year, after BlackSuit ransomware threat actors breached a third-party solutions provider that stored Blue Shield data.
Data breach impacts 260,000 Kelly Benefits’ clients
Officials for Kelly Benefits, a payroll and benefits solutions provider, have begun contacting affected individuals regarding a data breach that occurred from December 12th to the 17th of last year and exposed sensitive data for nearly 260,000 individuals. It is unconfirmed if a ransomware group was behind this data exfiltration, though it is possible that a negotiation was successful between the threat actors and Kelly Benefits’ staff, thus keeping the data from being published on a ransomware group’s leak site.
