Phishing campaigns taking advantage of the uncertainty following the collapse of Silicon Valley Bank (SVB) have been using phishing sites to try to steal SVB users’ crypto wallet information. In other cybersecurity news, insurer DC Health Link – the main insurer for many U.S. House of Representatives’ members and staff – suffered a data breach potentially exposing patient information.
LockBit leaks data on LA Housing Authority
Following an investigation into a security incident at the Housing Authority of the City of Los Angeles (HACLA), officials have confirmed that the LockBit ransomware group had unauthorized access to their systems for nearly a year and were able to exfiltrate a significant amount of sensitive data. LockBit posted the stolen data to their leak site at the end of January, but after a month of negotiations, no ransom appears to have been paid and the download link on their leak site is no longer active.
DC Health Link breach exposes House of Representatives’ data
The main healthcare insurer for many House of Representatives’ members and staff, DC Health Link, fell victim to a data breach at the end of last week and potentially exposed their personally identifiable information (PII). Officials for DC Health Link are still unsure on exactly how much information may have been compromised, though they have begun contacting any affected customers. It is believed that threat actors are already posting the stolen information for sale, though the validity of this statement hasn’t been confirmed.
Hawaiian Department of Health suffers data breach
Towards the end of January, officials for the Hawaii Department of Health (DOH) were informed that a former employee’s account credentials had been compromised and were being sold on dark web forums. Those credentials had also been used to illicitly access the state’s Electronic Death Registry System (EDRS) and steal personally identifiable information (PII) on 3,400 deceased people, with death records ranging from 1998 to 2023. DOH officials have already started notifying family members who may be subject to, or able to identify, any identity or credit fraud stemming from this breach.
Miami healthcare provider exposes data of 4.2million patients
It was recently revealed that the Miami-based healthcare provider, Independent Living Systems (ILS), had suffered a data breach which exposed sensitive health information for over 4.2 million patients. The investigation has confirmed that the threat actors infiltrated the main ILS systems for nearly a week and had access to a variety of information including social security numbers and confidential healthcare records. Notifications are being sent out to all affected patients, and luckily includes the offer of identity monitoring for a year.
Phishing campaigns capitalize on SVB failure
Shortly after the collapse of Silicon Valley Bank (SVB), researchers began spotting new phishing campaigns that were impersonating several cryptocurrency brands to steal wallet credentials. Within a week, several phishing websites were found to be redirecting users towards a fake login page that claimed to allow the user to convert their crypto to USD (US Dollars).