CyberSecurityBoard
Sponsor Register Login

UK Councils Warn of Data Breach After Attack on Medical Supplier

Multiple UK councils have warned that citizens' personal data may have been breached following a ransomware attack on a medical equipment supplier.
Nottingham Rehab Supplies Healthcare, which supplies health and care equipment numerous local authorities across the UK, was hit by a ransomware attack at the start of April 2024.
The attack resulted in the NRS website being taken offline.
A number of UK local authorities have now revealed that NRS has informed them that personal data of residents may have been breached by the attackers.
East Lothian Council said in a statement on May 14 that specialist teams are currently investigating the extent of the attack, although it does not yet know if any personal data has been compromised.
Waltham Forest Council said on May 16 that it has been made aware of a possible breach, but does not currently know whether personal data has been compromised.
Camden Council in London has also reportedly been affected by the attack but is unaware of whether personal data has been accessed.
The impacted councils have warned their residents to be vigilant for social engineering attacks, showing extra cautious about unsolicited emails, text messages, phone calls and home visits.
Genuine callers will always be happy to present their ID badges.
East Lothian is also recommending service users consider regularly changing their key safe number, if they have one.
William Wright, CEO of Closed Door Security, said that the delay between the attack taking place and customers being warned potentially means residents across the UK have had their data lying in the hands of a dangerous ransomware group for many weeks.
The incident is another reminder of the risk posed to organizations by sharing confidential data with third party suppliers.
This incident is a reminder to understand the data your suppliers hold and how secure each supplier is.
This shouldn't only be done when contracts are signed, but continually, based on their risk profile, to ensure their defences are keeping pace with modern attack trends.
On May 14, banking giant Santander confirmed that customer and employee data was breached following a compromise of a third-party provider.


This Cyber News was published on www.infosecurity-magazine.com. Publication date: Fri, 17 May 2024 13:45:17 +0000


Cyber News related to UK Councils Warn of Data Breach After Attack on Medical Supplier

How to perform a proof of concept for automated discovery using Amazon Macie | AWS Security Blog - After reviewing the managed data identifiers provided by Macie and creating the custom data identifiers needed for your POC, it’s time to stage data sets that will help demonstrate the capabilities of these identifiers and better understand how ...
5 months ago Aws.amazon.com
UK Councils Warn of Data Breach After Attack on Medical Supplier - Multiple UK councils have warned that citizens' personal data may have been breached following a ransomware attack on a medical equipment supplier. Nottingham Rehab Supplies Healthcare, which supplies health and care equipment numerous local ...
9 months ago Infosecurity-magazine.com
Mt. Graham Regional Medical Center Recovers from Ransomware Attack but Confirms Data Breach - On September 29, 2023, Mount Graham Regional Medical Center filed a notice of data breach with the U.S. Department of Health and Human Services Office for Civil Rights after confirming a recent ransomware attack. In this notice, MGRMC explains that ...
1 year ago Jdsupra.com
Tech Security Year in Review - In this Tech Security Year in Review for 2023, let's look into the top data breaches of the past year. Each factor contributes to the growing threatscape, demanding a proactive and adaptable cybersecurity approach to safeguard your organization ...
1 year ago Securityboulevard.com
Data Breach Response: A Step-by-Step Guide - In today's interconnected world, organizations must be prepared to respond swiftly and effectively in the face of a data breach. To navigate these challenges, a well-defined and comprehensive data breach response plan is essential. Let's explore the ...
1 year ago Securityzap.com
Understanding Medical Device Regulation Technology - With healthcare facilities constantly evolving, the medical device industry is becoming increasingly more regulated. As the need for the efficient and safe use of medical technology increases, so too does the adoption of medical device regulation ...
2 years ago Hackread.com
Infosys McCamish Systems data breach impacted over 6M people - MUST READ. Infosys McCamish Systems data breach impacted over 6 million people. Keytronic confirms data breach after ransomware attack. City of Cleveland still working to fully restore systems impacted by a cyber attack. ABN Amro discloses data ...
8 months ago Securityaffairs.com CVE-2023-20198 Cactus Ransomhub
How Hospitals Can Help Improve Medical Device Data Security - COMMENTARY. Hospitals and medical device manufacturers must team up to help create a secure environment to protect the personal health information derived from patient monitors and other medical devices. For some time, this notion of shared ...
1 year ago Darkreading.com
Prudential Financial data breach impacted over 2.5M individuals - Prudential Financial data breach impacted over 2.5 million individuals. Keytronic confirms data breach after ransomware attack. ABN Amro discloses data breach following an attack on a third-party provider. Christie disclosed a data breach after a ...
8 months ago Securityaffairs.com Cactus Ransomhub
Evolve Bank data breach impacted fintech firms Wise and Affirm - MUST READ. Evolve Bank data breach impacted fintech firms Wise and Affirm. Keytronic confirms data breach after ransomware attack. ABN Amro discloses data breach following an attack on a third-party provider. Christie disclosed a data breach after a ...
8 months ago Securityaffairs.com BianLian Cactus Ransomhub
Fellowship Village Files Notice of Data Breach with the Federal Government - On October 8, 2023, Fellowship Village filed a notice of data breach with the U.S. Department of Health and Human Services Office for Civil Rights after discovering that there was unauthorized access to the company's computer network. In this notice, ...
1 year ago Jdsupra.com
Welltok data breach exposes data of 8.5 million US patients - Healthcare SaaS provider Welltok is warning that a data breach exposed the personal data of nearly 8.5 million patients in the U.S. after a file transfer program used by the company was hacked in a data theft attack. Welltok works with health service ...
1 year ago Bleepingcomputer.com
Christie disclosed a data breach after RansomHub attack - MUST READ. Christie disclosed a data breach after a RansomHub attack. OmniVision disclosed a data breach after the 2023 Cactus ransomware attack. City of Wichita disclosed a data breach after the recent ransomware attack. Australian Firstmac Limited ...
9 months ago Securityaffairs.com Cactus Ransomhub
Texas Retina Associates Notifies Nearly 300k People of Recent Data Breach - On June 26, 2024, Texas Retina Associates filed a notice of data breach with the Attorney General of Texas after discovering that confidential information that had been entrusted to the company was subject to unauthorized access. In this notice, ...
8 months ago Jdsupra.com
Ticketmaster confirms data breach impacting 560 million customers - MUST READ. Ticketmaster confirms data breach impacting 560 million customers. ABN Amro discloses data breach following an attack on a third-party provider. Christie disclosed a data breach after a RansomHub attack. OmniVision disclosed a data breach ...
9 months ago Securityaffairs.com CVE-2020-3259 BianLian Cactus Ransomhub
Goto Customers Backup Data Breach: Protect Your Business and Handle Data Breach Risks - A data breach at Goto customers exposed their backup data to malicious actors, leading to a data breach that impacted those customers. Businesses need to be aware of the risks associated with data breaches and how to protect their organisations from ...
2 years ago Securityaffairs.com
Neurosurgeons of New Jersey Confirms Cyber Attack Resulting in Recent Data Breach - On December 4, 2023, Neurosurgical Associates of New Jersey filed a notice of data breach with the U.S. Department of Health and Human Services Office for Civil Rights after discovering. In this notice, Neurosurgeons of New Jersey explains that an ...
1 year ago Jdsupra.com
How Can Data Breach Be A Trouble For Your Industry? - To navigate an era of cyber risks, this unsettling reality necessitates a renewed focus on data integrity protection and digital asset protection. In this blog, we will discuss a data breach in the Hospitality industry. Some of the companies like MGM ...
1 year ago Securityboulevard.com
Proliance Surgeons Announces Cyber Attack Resulting in Data Breach - On November 21, 2023, Proliance Surgeons filed a notice of data breach with the Attorney General of Massachusetts after discovering that a February 2023 cyberattack enabled an unauthorized party to access the company's computer network. In this ...
1 year ago Jdsupra.com
Prestige Care Announces Data Breach Affecting an Unknown Number of Residents and Employees - On November 6, 2023, Prestige Care Inc. filed a notice of data breach with the U.S. Department of Health and Human Services Office for Civil Rights after discovering that an unauthorized party accessed the company's computer network. In this notice, ...
1 year ago Jdsupra.com
Longhorn Imaging Center Files Notice of Data Breach Affecting Patients' Sensitive Medical Information - On October 25, 2023, South Austin Health Imaging LLC dba Longhorn Imaging Center filed a notice of data breach with the Attorney General of Texas after discovering that confidential information in the company's possession was subject to unauthorized ...
1 year ago Jdsupra.com
AvidXchange Notifies Consumers of Data Breach Following Period of Unauthorized Access - On October 13, 2023, AvidXchange, Inc. filed a notice of data breach with the Attorney General of Massachusetts after discovering that a recent cybersecurity event resulted in an unauthorized party being able to access the company's IT network. In ...
1 year ago Jdsupra.com
Akumin Files Notice of Data Breach with the Securities and Exchange Commission - On October 16, 2023, Akumin Inc. filed a notice of data breach with the Securities and Exchange Commission after discovering that it had been the recent victim of a ransomware attack. In this notice, Akumin explains that the incident resulted in an ...
1 year ago Jdsupra.com
FCC orders telecom carriers to report PII data breaches within 30 days - Starting March 13th, telecommunications companies must report data breaches impacting customers' personally identifiable information within 30 days, as required by FCC's updated data breach reporting requirements. FCC's final rule follows several ...
1 year ago Bleepingcomputer.com
Ticketmaster sends notifications about recent massive data breach - Ticketmaster has started to notify customers who were impacted by a data breach after hackers stole the company's Snowflake database, containing the data of millions of people. Last month, a threat actor known as ShinyHunters began selling stolen ...
8 months ago Bleepingcomputer.com Hunters

Latest Cyber News


Cyber Trends (last 7 days)


Trending Cyber News (last 7 days)