Weekly Cybersecurity Recap January 12
Table of Contents
- By Steven
- Jan 12, 2024
This week’s featured cyber incidents included a combined 2.3 million, although one event remains under investigation. The week began with an update from the Edmonds School District regarding their January 2023 breach, which exposed 145,844 individuals. Three other breaches also updated information; NASCO led the group with an update on their 1.6 million breach stemming from MOVEit. Not far behind, Electrostim Medical Services released an update on their breach, exposing more than 542,990 patients. Cooper Aerobics was the last organization to publish an update; their February 2023 breach has compromised the data of nearly 90k patients. LoanDepot, one of the largest nonbanking mortgage lenders in the US, was also attacked this week. Find out more about each breach below.
Edmonds School District
An update from a January 2023 breach, this Washington state school district includes 35 schools, 20k students, and over 1,300 teachers. At the beginning of 2023, an unauthorized actor accessed the district network and stole data relating to thousands. Some of this data included names, Social Security Numbers (SSNs), addresses, financial account data, employee ID numbers, driver’s license numbers, birthdays, student ID numbers, medical data, and student records. Consequently, students, parents, guardians, and facilitators must take action to protect themselves from data misuse.
Nonbanking mortgage lender LoanDepot suffered an attack this week—causing disruptions to their services and website. An unauthorized actor made their way into LoanDepot’s network and was able to encrypt some data within the environment. Investigations into the event and its elements are ongoing; subsequently, there is little public knowledge about the potentially exposed data elements. LoanDepot borrowers, homeowners, staff, and associates should consider taking preventative action to protect their data.
Electrostim Medical Services
Electrostim breach happened in May 2023, although unrelated to the MOVEit global event. An unauthorized actor accessed and stole files from EMSI’s systems, exposing patient data for months before EMSI’s investigations concluded in December 2023. The exposures include patients’ names, contact details, insurance data, diagnosis and treatment information, subscriber numbers, billed items, and prescribed products. Those exposed in this event are at a high risk for medical fraud; medical ID monitoring services are here to help.
Although Cooper breach happened in February 2023, officials did not notice the activity until December. As a result, those with exposures from Cooper Aerobics have had their information compromised for nearly a year before being notified. The data stolen in this event is extensive, including names, contact information, personally identifiable information, financial details, personal medical data, and the username and password of their Cooper accounts. Victims of this breach must act immediately to mitigate the event’s consequences and Cooper Aerobics’ negligence in the best way possible.
A solutions provider to Blue Cross and Blue Shield, NASCO's breach is this week’s MOVEit addition. The global MOVEit event allowed cybercriminals to access the networks and servers of organizations using the file transfer tool. NASCO was determined to be one of those entities impacted by the event, and this week, they finished sending notices to those impacted. Exposed data elements include patient names, demographic data, medical information, dates of birth, and SSNs. Victims of this breach are at an increased risk for medical fraud; thus, they must secure their data before it can be misused.