'A 38-year-old man has been charged over the data breach of a NSW court website believed to have been committed earlier this year.

Last month, it was confirmed that almost 9,000 court documents had been downloaded following a major data breach of the NSW Online Registry website.

Detectives arrested the man at a property in Maroubra, seizing two laptops in the process.'
https://www.abc.net.au/news/2025-04-23/sydney-man-charged-department-community-and-justice-data-breach/105207852 #auslaw #auspol #databreach

WBAL-TV11 started digging into the #Kairos attack on the State Attorney's Office for the City of Baltimore.

Kairos had exfiltrated 325 GB of files, and none of it appeared to have been protected with any encryption. My previous report on the incident can be found here: https://databreaches.net/2025/04/19/baltimore-city-states-attorneys-office-hacked-data-leaked/

The city has now confirmed they had a breach (they were notified by law enforcement as they hadn't detected it on their own, it seems). But they are not giving out any details or answering any questions. See WBAL-TV's coverage at https://www.wbaltv.com/article/baltimore-states-attorney-office-cybersecurity-incident/64551797

So, of course, I have now filed a public records request under #MPIA to try to get answers to some questions because the state ignored all of my polite email inquiries.

Did I ever mention that I hate not getting answers to questions? :)

DATE: April 22, 2025 at 09:36AM
SOURCE: HIPAA JOURNAL

Direct article link at end of text block below.

Hospital Español Auxilio Mutuo de Puerto Rico Confirms 2023 Data Breach https://t.co/glZLW5f8ku #healthcare #databreach

Here are any URLs found in the article text:

https://t.co/glZLW5f8ku

Articles can be found by scrolling down the page at https://www.hipaajournal.com/ .

-------------------------------------------------

Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org

Most healthcare security and privacy posts related to IT or infosec are at @rsstosecurity

-------------------------------------------------

DATE: April 22, 2025 at 09:30AM
SOURCE: HIPAA JOURNAL

Direct article link at end of text block below.

Onsite Mammography Email Breach Affects 357,000 Patients https://t.co/e1xXzEJyeM #healthcare #databreach

Articles can be found by scrolling down the page at https://www.hipaajournal.com/ .

-------------------------------------------------

Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org

Most healthcare security and privacy posts related to IT or infosec are at @rsstosecurity

-------------------------------------------------

DATE: April 21, 2025 at 11:32AM
SOURCE: HIPAA JOURNAL

Direct article link at end of text block below.

Email Accounts Breached at San Francisco Campus for Jewish Living & Altior Healthcare https://t.co/BZKXU74T97 #healthcare #databreach

Here are any URLs found in the article text:

https://t.co/BZKXU74T97

Articles can be found by scrolling down the page at https://www.hipaajournal.com/ .

-------------------------------------------------

Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org

Most healthcare security and privacy posts related to IT or infosec are at @rsstosecurity

-------------------------------------------------

DATE: April 21, 2025 at 11:32AM
SOURCE: HIPAA JOURNAL

Direct article link at end of text block below.

Email Accounts Breached at San Francisco Campus for Jewish Living & Altior Healthcare https://t.co/BZKXU74T97 #healthcare #databreach

Articles can be found by scrolling down the page at https://www.hipaajournal.com/ .

-------------------------------------------------

Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org

Most healthcare security and privacy posts related to IT or infosec are at @rsstosecurity

-------------------------------------------------

Here’s your weekly #databreach news roundup:

Legends International, Conduent, Hertz, Oregon Department of Environmental Quality (DEQ), and Lemonade.

https://blog.xposedornot.com/weekly-databreaches-roundup-week-16-2025/

Hertz, Legends International, H&R Block, Australia (the entire country), Canada's CRA, JPMorgan Chase and Bank of BNY Mellon rounds out this week's insanity.

#News #TechNews #Cybersecurity #Privacy #DataBreach #Ransomware #Phising

https://youtu.be/Ug8bmTS-zUw

Daily podcast: Hertz, Legends International, H&R Block, Australia (the entire country), Canada's CRA, JPMorgan Chase and Bank of BNY Mellon rounds out this week's insanity.

#News #TechNews #Cybersecurity #Privacy #DataBreach #Ransomware #Phising #podcast

https://soundcloud.com/nickaesp/b2025-04-20

Just got a data breach notification from Lee Valley.

Full name address, credit card details from a cloud server that was popped from Oct 8, 2024 to March 12, 2025.

If you bought stuff from the Lee Valley website in that time be on the lookout for a breach notification and get ready to freeze/replace your credit card.

From the notification it sounds like the attacker was able to add code to the website frontend to siphon off credit card info.

NEW by me:

Baltimore City State’s Attorney’s Office hacked; Data leaked

https://databreaches.net/2025/04/19/baltimore-city-states-attorneys-office-hacked-data-leaked/