Cybersecurity and Data Privacy in the USA: February 19 – 25, 2024

15,355,999 known records breached in 66 newly disclosed incidents

Welcome to this week’s round-up of the biggest and most interesting news stories in the USA.

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks.


Publicly disclosed data breaches and cyber attacks: in the spotlight

loanDepot reports an extra 324,071 victims

In January, the mortgage lender loanDepot announced in an SEC filing that an unauthorized third party had gained access to the sensitive personal information of about 16.6 million individuals in its systems.

In a new breach notification to the Maine Attorney General this week, it reported that an extra 324,071 individuals were affected. The breached data includes names, addresses, emails, phone numbers, dates of birth, and financial account and Social Security numbers.

Data breached: 16,924,071 individuals’ data.

Colorado Department of Health Care Policy & Financing reports a further 473,936 victims

Last October, the Colorado Department of Health Care Policy & Financing notified the Maine Attorney General of a breach affecting 4,187,732 people. The incident was caused by the MOVEit Transfer vulnerability.

This week, the Department informed the Maine regulator that an additional 474,936 individuals were impacted. The breached data may include names, Social Security numbers, and health insurance information.

Data breached: 4,662,668 individuals’ data.


Publicly disclosed data breaches and cyber attacks in the USA: full list

This week, we found 15,355,999 records known to be compromised in the USA, and 66 U.S. organizations suffering a newly disclosed incident. 59 of them are known to have had data exfiltrated, exposed, or otherwise breached. None definitely haven’t had data breached.

We also found 4 U.S. organizations providing a significant update on a previously disclosed incident.

Organization(s)SectorData breached?Known data breached
loanDepot
Source 1; source 2
(Update)
FinanceYes16,924,071
Colorado Department of Health Care Policy & Financing
Source 1; Source 2
(Update)
PublicYes4,662,668
Medical Management Resource Group, L.L.C. (American Vision Partners)
Source 1; source 2; source 3
(New)
Health careYes2,350,236
March Construction
Source
(New)
ConstructionYes1.8 TB
Roncelli Plastics
Source
(New)
ManufacturingYes1.6 TB
The Peddie School
Source
(New)
EducationYes1.2 TB
Newman Ferrara
Source
(New)
LegalYes835 GB
UNITE HERE
Source
(Update)
Professional servicesYes791,273
First Professional Services
Source
(New)
Health careYes755 GB
BS&B Safety Systems
Source
(New)
ManufacturingYes714.9 GB
Climatech
Source
(New)
ManufacturingYes550 GB
VSP Dental
Source
(New)
Health careYes543 GB
Human Resources Technologies
Source
(New)
IT servicesYes500 GB
Dilweg
Source
(New)
FinanceYes453 GB
Spine West
Source
(New)
Health careYes450 GB
Wapiti Energy
Source
(New)
EnergyYes436.3 GB
Family Health Center
Source
(New)
Health careYes327 GB
US Merchants
Source
(New)
ManufacturingYes245 GB
Hardeman County Community Health Center
Source
(New)
Health careYes169 GB
CarePro
Source 1; source 2
(New)
Health careYes151,499
Quik Pawn Shop
Source
(New)
FinanceYes140 GB
Prime Healthcare Employee Health Plan
Source 1; source 2
(New)
Health careYes101,135
Bram Auto Group
Source
(New)
ManufacturingYes85 GB
medQ, Inc.
Source
(New)
Health careYes54,353
Advanced Project Solutions
Source
(New)
IT servicesYes54 GB
Greater Cincinnati Behavioral Health Services
Source 1; source 2
(Update)
Health careYes50,000
Compression Leasing Services
Source
(New)
ManufacturingYes41.11 GB
Washington County Hospital and Nursing Home
Source
(New)
Health careYes31,125
Crossroads Equipment Lease & Finance, LLC
Source
(New)
FinanceYes24,182
EdisonLearning, Inc.
Source
(New)
EducationYes23,922
Peer Consultants
Source
(New)
Professional servicesYes20 GB
Wyze
Source
(New)
IT servicesYes13,000
Bay Area Heart Center
Source 1; source 2
(New)
Health careYes11,709
Westward360
Source
(New)
Real estateYes11 GB
Greylock McKinnon Associates, Inc.
Source
(New)
LegalYes5,465
Bacon-Universal Holdings, LLC
Source
(New)
ConstructionYes3,561
T.Y. Lin International Group Ltd.
Source
(New)
EngineeringYes3,398
GC Services
Source
(New)
FinanceYes3,043
CVS Pharmacy, Inc.
Source 1; source 2
(New)
Health careYes1,896
Matthews International
Source
(New)
ManufacturingYes1,846
Pond & Company
Source
(New)
EngineeringYes1,495
Brazee & Huban CPAs
Source
(New)
FinanceYes1,119
BlueCross BlueShield of Tennessee, Inc. and Volunteer State Health Plan, Inc. d/b/a BlueCare Plus Tennessee
Source 1; source 2
(New)
Health careYes790
Roswell Park Comprehensive Cancer Center
Source 1; source 2
(New)
Health careYes755
Capital Health system, Inc.
Source 1; source 2
(New)
Health careYes501
Harris Beach PLLC
Source
(New)
LegalYes486
Beauty Essence, Inc.
Source
(New)
LeisureYes409
Walmart, Inc.
Source
(New)
RetailYes204
Xerox Corporation
Source
(New)
Professional servicesYes181
HematoLogics, Inc.
Source
(New)
Health careYes99
The Chas. E. Phipps Co
Source
(New)
ConstructionYesUnknown
FixedFloat
Source
(New)
CryptoYesUnknown
Aeromech
Source
New
EngineeringYesUnknown
Bradshaw Medical (intech)
Source
(New)
Health careYesUnknown
Maryville Addiction Treatment Center
Source 1; source 2
(New)
Health careYesUnknown
Radiology Associates of Ocala
Source
(New)
Health careYesUnknown
Infiniti USA
Source
(New)
ManufacturingYesUnknown
Pressco Technology
Source
(New)
ManufacturingYesUnknown
Welch’s
Source
(New)
ManufacturingYesUnknown
C&J Industries
Source
(New)
Professional servicesYesUnknown
Carl Fischer Music Publishing
Source
(New)
RetailYesUnknown
Lancaster
Source
(New)
RetailYesUnknown
U-Haul
Source
(New)
RetailYesUnknown
CRB Group
Source
(New)
ConstructionUnknownUnknown
KHS&S Contractors
Source
(New)
ConstructionUnknownUnknown
Dunaway
Source
(New)
EngineeringUnknownUnknown
Change Healthcare
Source
(New)
Health careUnknownUnknown
Ernest Health
Source
(New)
Health careUnknownUnknown
National Dentex Labs
Source
(New)
Health careUnknownUnknown
Silgan Holdings
Source
(New)
ManufacturingUnknownUnknown

Note 1: ‘New’/‘Update’ in the first column refers to whether this breach was first publicly disclosed this week, or whether a significant update was released this week. The updated data point is italicized in the table.

Note 2: For incidents where we only know the file size of the data breached, we use the formula 1 MB = 1 record. Given that we can’t know the exact numbers, as it depends on the types of records included (e.g. pictures and medical histories are considerably larger files than just names and addresses), we err on the side of caution by using this formula. We believe that this underestimates the records breached in most cases, but it is more accurate than not providing a number at all.


Enforcement

New Executive Order issued to strengthen U.S. port security

The Biden-Harris administration is issuing an Executive Order to strengthen the security of U.S. ports. Cyber incidents that endanger “any vessel, harbor, port, or waterfront facility” must be reported. The U.S. Coast Guard is also given the authority to respond to “malicious cyber activity.”


Other news

LockBit ransomware group recovers from law enforcement disruption

Last week, we reported that law enforcers disrupted the LockBit ransomware group. Four days later, the group recovered. Its blog has now reappeared, as well as a leak page containing folders for “dozens” of victims.

NSA announces retirement of director of cybersecurity

The NSA has announced the retirement of its director of cybersecurity, Rob Joyce. He’ll be succeeded by David Luber.


Key date

March 31, 2024 – PCI DSS v4.0 transitioning deadline 

Version 3.2.1 of the PCI DSS (Payment Card Industry Data Security Standard) is being retired on March 31, to be replaced by version 4.0 of the Standard. There are more than 50 new requirements in PCI DSS v4.0. You can find out more about them on the PCI Security Standards Council’s website.


That’s it for this week’s round-up. We hope you found it useful.

We’ll be back next week with the biggest and most interesting news stories, all rounded up in one place.

In the meantime, if you missed it, check out last week’s round-up. Alternatively, you can view our full archive.


Security Spotlight

To get news of the latest data breaches and cyber attacks straight to your inbox, subscribe to our weekly newsletter: the Security Spotlight.

Every Tuesday, you’ll get a short email with:

  • Industry news, including this weekly round-up
  • Our latest research and statistics
  • Free useful resources
  • Upcoming webinars
  • Other ways we can help