Author: Cybersecure California

On December 5, 2023, Advantis Global filed a notice of data breach with the Attorney General of California after discovering a “security incident” involving its corporate email system. In this notice, Advantis explains that the incident resulted in an unauthorized party being able to access consumers’ sensitive information. Upon completing its investigation, Advantis began sending…

Stockton, Calif.-based Dameron Hospital is rescheduling procedures after a cyberattack, according to a Dec. 5 report from the local NBC affiliate KCRA.The hospital reported a data security incident affecting some network systems and is working with external cybersecurity experts to investigate and further respond. The hospital’s patient care operations and emergency department continue to function…

On December 1, 2023, the Federal Bureau of Investigation (“FBI”), Cybersecurity and Infrastructure Security Agency (“CISA”), National Security Agency (“NSA”), Environmental Protection Agency (“EPA”), and the Israel National Cyber Directorate (“INCD”)—hereafter referred to as “the authoring agencies”— issued a joint Cybersecurity Advisory (“CSA”) to highlight continued malicious cyber activity against operational technology devices by Iranian…

The California Privacy Protection Agency (“CPPA”) issued and discussed draft regulations on Cybersecurity Audits and Risk Assessments late in the summer. The CPPA Board plans to discuss the draft regulations at its upcoming December 8th public meeting, along with a presentation on the regulations. While the regulations are certainly subject to change moving forward, including…

On November 27, 2023, the New York State Department of Financial Services (“DFS”) and First American Title Insurance Company (“First American”) entered into a consent order1 that resolved litigation over First American’s cybersecurity practices. Though the associated fine ($1 million) was relatively small, the order serves as a reminder to all organizations that simply having…

An unknown number of Blue Shield of California members may have had their personal data, including Social Security numbers, birth dates and treatment information, stolen during a cybersecurity breach this spring.The healthcare insurance provider said the attack targeted the files of one of its contracted vendors, which manages vision benefits for many of Blue Shield’s…

Dive Brief: Staples said a cyber incident starting Monday disrupted its ability to process and deliver online orders via Staples.com. The attack also impacted communications and customer service, the company said in a statement posted on its website.  After extensive testing, the company was able to get numerous systems back online by Wednesday and restored other…

Sensitive data from Blue Shield of California vision policy holders — including Social Security numbers, birth dates and addresses — may be among confidential patient information accessed by criminal hackers, the Oakland-based health insurance giant announced this week.The breach, which may also have included diagnosis and treatment information, resulted from a cyberattack on a widely…