Cybersecurity and Data Privacy in the USA: January 22 – 28, 2024

Welcome to this week’s round-up of the biggest and most interesting news stories in the USA.

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks.


Publicly disclosed data breaches and cyber attacks: in the spotlight

The ‘mother of all breaches’: More than 26 billion records exposed

The security researcher Bob Diachenko and investigators from Cybernews have discovered an open instance with 26 billion data records, mostly compiled from previous breaches – although it likely also includes new data.

The data is more than mere credentials, too – according to Cybernews, most of the exposed data is sensitive. Given the extraordinary scale of the data breach, it’s been dubbed the ‘MOAB’ (mother of all breaches). In total, 3,876 domain names were included in the exposed data set.

Data breached: More than 26 billion records.

loanDepot reports 16.6 million individuals’ sensitive data breached

Earlier this month, mortgage lender loanDepot reported suffering a cyber attack that caused an IT disruption. On January 22, the company announced in a SEC filing that an “unauthorized third party” gained access to “sensitive personal information” of about 16.6 million individuals in its systems. The filing didn’t specify the types of sensitive data breached.

Data breached: 16.6 million individuals’ personal data.


Publicly disclosed data breaches and cyber attacks in the USA: full list

This week, excluding the MOAB, we’ve found 48,302,084 records known to be compromised in the USA, and 115 U.S. organizations suffering a newly disclosed incident. 107 of them are known to have had data exfiltrated, exposed, or otherwise breached. Only 1 definitely hasn’t had data breached.

We’ve also found 5 U.S. organizations providing a significant update on a previously disclosed incident.

Organization(s)SectorData breached?Known records breached
3,876 domain names worldwide (the ‘mother of all breaches’ or ‘MOAB’)
Source
(New)
MultipleYesMore than 26,000,000,000
loanDepot
Source 1; source 2
(Update)
FinanceYes16,600,000
Trello
Source 1; source 2
(New)
SoftwareYes15,115,516
Concentra
Source 1; source 2
(New)
Health careYes3,998,162
At Home Group Inc.
Source
(New)
RetailYes2,588,849
Keenan & Associates
Source 1; source 2
(Update)
InsuranceYes1,509,616
Four Hands
Source
(New)
ManufacturingYes1.5 TB
Double Eagle Development
Source
(New)
Real estateYes904,980
Dillard’s Inc.
Source
(New)
RetailYes593,688
Chattanooga Imaging
Source 1; source 2
(New)
Health careYesMore than 500,000
Schneider Saddlery
Source
(New)
RetailYes451,503
Lucky Brand
Source
(New)
RetailYes374,482
Jason’s Deli
Source
(New)
HospitalityYes344,034
Ulta Beauty
Source
(New)
RetailYes327,936
Jay Group
Source
(New)
TransportYes270 GB
Corelle Brands
Source
(New)
ManufacturingYes244,108
Smith Affiliated Capital Corp.
Source
(New)
FinanceYesMore than 200 GB
Planet Home Lending, LLC
Source
(New)
FinanceYes199,873
Bonobos
Source
(New)
RetailYes191,721
Draneas Law
Source
(New)
LegalYes189 GB
Advance Auto Parts
Source
(New)
RetailYes186,853
HORNE
Source 1; source 2
(New)
Professional servicesYes170,052
WEBS – America’s Yarn Store
Source
(New)
RetailYes157,895
The Mike Ferry Organization
Source
(New)
Real estateYes136,221
Urban Barn
Source
(New)
RetailYes122,957
Ace Hardware Corporation
Source
(New)
RetailYes122,452
Skechers
Source
(New)
RetailYes113,753
First Financial Security
Source 1; source 2
(Update)
InsuranceYes105,764
Value City Furniture
Source
(New)
RetailYes104,312
The Company Store
Source
(New)
RetailYes89,007
Kansas Joint & Spine Specialists
Source 1; source 2
(New)
Health careYes83,869
Dooney & Bourke
Source
(New)
RetailYes80,956
Books A Million
Source
(New)
RetailYes69,988
Michigan Orthopaedic Surgeons
Source 1; source 2
(New)
Health careYes67,477
Sam Ash Music
Source
(New)
RetailYes66,991
Nassau Vision Group
Source
(New)
ManufacturingYes63 GB
Jerry’s Artarama
Source
(New)
RetailYes56,280
VELUX USA
Source
(New)
ManufacturingYes51,097
American Signature Inc.
Source
(New)
RetailYes42,771
Havertys Furniture
Source
(New)
ManufacturingYes34,941
BrandSource
Source
(New)
ManufacturingYes35,748
Dollar General
Source
(New)
RetailYes31,699
Integrity, Inc.
Source
(New)
Non-profitYes25,908.62 MB
Ardent Health Services
Source 1; source 2
(Update)
Health careYes23,686
Bake’n Joy Foods, Inc. and CommerceV3
Source
(New)
Manufacturing and IT servicesYes21,914
Hinley
Source
(New)
ManufacturingYes14,470
National Business Furniture
Source
(New)
ManufacturingYes13,412
3Rivers Archery
Source
(New)
RetailYes11,932
Ventura County Credit Union
Source
(New)
FinanceYes9,452
Double Eagle Energy Holdings IV LLC
Source
(New)
EnergyYes9,088
Brady Martz & Associates
Source 1; source 2
(New)
FinanceYes7,154
HOM Furniture
Source
(New)
ManufacturingYes6,226
Marywood Nursing Care Center
Source
(New)
Health careYes6,178
Colorado Ophthalmology
Source 1; source 2
(New)
Health careYes6,020
Cloud South
Source
(New)
IT servicesYes5,128
Paula’s Choice Skincare
Source
(New)
ManufacturingYes5,065
Lake County Health Department and Community Health Center
Source 1; source 2
(New)
PublicYes5,000
Meyer Cookware
Source
(New)
ManufacturingYes4,260
PetFlow
Source
(New)
ManufacturingYes2,415
Center for Urban Community Services
Source
(New)
Non-profitYes2,266
Orgain
Source
(New)
ManufacturingYes2,198
New Balance
Source
(New)
ManufacturingYes2,093
The Brick
Source
(New)
RetailYes1,744
PostWorks New York
Source
(New)
MediaYes1,559
DiscountMags
Source
(New)
RetailYes1,420
Hale Groves
Source
(New)
ManufacturingYes1,417
Enterprise Bank & Trust
Source
(New)
FinanceYes1,307
Naturepedic
Source
(New)
ManufacturingYes1,284
Nautica
Source
(New)
RetailYes1,168
Ricardo Defense Inc
Source
(New)
ManufacturingYes1,149
Pittman & Davis, LLC
Source
(New)
RetailYes1,136
Suja Organic
Source
(New)
RetailYes1,111
Mount Vernon Dental Smiles
Source 1; source 2
(New)
Health careYes1,069
PowerBar
Source
(New)
RetailYes952
Walker Therapeutic & Educational Programs
Source 1; source 2
(New)
Non-profitYes846
Catholic Heath Initiative Trinity Medical Center
Source 1; source 2
(New)
Health careYes797
Smartpress
Source
(New)
RetailYes566
FedEx Corporation Group Health Plan
Source
(New)
InsuranceYes553
Covenant Care California, LLC
Source 1; source 2; source 3
(Update)
Health careYes501
Daleville Dental LLC
Source 1; source 2
(New)
Health careYes500
FootJoy
Source
(New)
RetailYes445
National Right to Work Committee
Source
(New)
Non-profitYes325
American Medical ID
Source
(New)
ManufacturingYes248
GC Services
Source
(New)
FinanceYes180
Drazin and Warshaw, P.C.
Source
(New)
LegalYes163
Newington Fire Department
Source
(New)
PublicYes127
M&T Bank
Source
(New)
FinanceYes43
First Century Bank
Source
(New)
FinanceYes23
Tanga
Source
(New)
RetailYes16
The Hartford
Source
(New)
FinanceYes15
Latham Centers, Inc.
Source
(New)
Health careYes1
Covanta
Source 1; source 2
(New)
EnvironmentalYesUnknown
Full Circle Electronics
Source 1; source 2
(New)
EnvironmentalYesUnknown
Veolia North America
Source
(New)
EnvironmentalYesUnknown
Dawson James Securities, Inc.
Source
(New)
FinanceYesUnknown
First Mid
Source
(New)
FinanceYesUnknown
Mordfin Group
Source
(New)
FinanceYesUnknown
Aria Care Partners
Source 1; source 2
(New)
Health careYesUnknown
Des Moines Orthopaedic Surgeons
Source 1; source 2
(New)
Health careYesUnknown
Moses Lake Community Health Center
Source 1; source 2
(New)
Health careYesUnknown
Signature Performance, Inc.
Source
(New)
Health careYesUnknown
Hewlett Packard Enterprise
Source 1; source 2
(New)
IT servicesYesUnknown
Sirius Federal
Source
(New)
IT servicesYesUnknown
UICGS/Bowhead Family of Companies
Source
(New)
IT servicesYesUnknown
Total Air Solutions, LLC
Source
(New)
Professional servicesYesUnknown
Kansas City Area Transportation Authority
Source 1; source 2
(New)
PublicYesUnknown
Phastar
Source 1; source 2
(New)
Research servicesYesUnknown
David’s Bridal
Source
(New)
RetailYesUnknown
Yesway
Source
(New)
RetailYesUnknown
Anthropic
Source
(New)
SoftwareYesUnknown
Kahua
Source 1; source 2
(New)
SoftwareYesUnknown
PowerReviews
Source
(New)
SoftwareYesUnknown
Bakersfield College
Source
(New)
EducationUnknownUnknown
EquiLend
Source 1; source 2
(New)
FinanceUnknownUnknown
BrightStar Care
Source
(New)
Health careUnknownUnknown
Bucks County
Source 1; source 2
(New)
PublicUnknownUnknown
Nevada Gaming Control Board
Source 1; source 2
(New)
PublicUnknownUnknown
U.S. Department of Health and Human Services
Source
(New)
PublicUnknownUnknown
Washington County
Source
(New)
PublicUnknownUnknown
Tesla
Source
(New)
ManufacturingNo0

Note 1: ‘New’/‘Update’ in the first column refers to whether this breach was first publicly disclosed this week, or whether a significant update was released this week. The updated data point is italicized in the table.

Note 2: For incidents where we only know the file size of the data breached, we use the formula 1 MB = 1 record. Given that we can’t know the exact numbers, as it depends on the types of records included (e.g. pictures and medical histories are considerably larger files than just names and addresses), we err on the side of caution by using this formula. We believe that this underestimates the records breached in most cases, but it is more accurate than not providing a number at all.


AI

U.S. NAIRR to partner with AI developers

The U.S. National Science Foundation, alongside 10 other federal agencies and 25 private-sector, non-profit, and philanthropic organizations, has launched the NAIRR (National Artificial Intelligence Research Resource), with the aim of democratizing the future of AI research and development. NAIRR will “provide access to advanced computing, datasets, models, software, training and user support to U.S.-based researchers and educators.”

Final draft of EU Artificial Intelligence Act leaked

Luca Bertuzzi, the technology editor of Euractiv, has shared the final draft of the EU’s AI Act, “ahead of a discussion within the Telecom Working Party, a technical body of the EU Council, on Wednesday and formal adoption at the ambassador level (i.e. COREPER) on 2 February.”


Enforcement

USA, UK, and Australia sanction “Russia-based cyber hacker”

The USA, UK, and Australia have sanctioned the Russian national Aleksander Ermakov, following his identification as a key actor in the cyber attack on Australia Medibank in 2022. The attack saw 9.7 million customers’ personal data leaked on the dark web.

SolarWinds seeks dismissal of SEC cybersecurity lawsuit

SolarWinds Corp. and its CISO, Tim Brown, have filed a dismissal motion at New York federal court, denying SEC allegations of fraud and internal control failures relating to its cybersecurity practices following the cyber attack it suffered from 2019 to 2020.

Senator says NSA purchase of U.S. citizens’ personal data is illegal

Sen. Ron Wyden has said the NSA’s purchase of Americans’ Internet records is illegal, according to a recent FTC ruling. Sen. Wyden has demanded that the Biden administration prohibit federal agencies from buying personal data from data brokers.

CNIL fines Amazon France Logistique €32 million for GDPR breach

France’s supervisory authority, the CNIL, has fined Amazon France Logistique, the division that manages the Amazon group’s French warehouses, €32 million (about $35 million) for monitoring employee behavior in breach of the EU GDPR.


Other news

Three new cybersecurity reports published

The Securonix 2024 Insider Threat Report looks at internal security risks, while the Malware Trends Overview Report: 2023 from Any Run examines the most prevalent malware types of 2023, and Coveware examines the latest ransomware trends.

HHS releases voluntary cybersecurity performance goals for U.S. health sector

The U.S. Department of Health and Human Services has released “voluntary health care specific cybersecurity performance goals” and a new website to help health care and public health sector organizations implement “high-impact cybersecurity practices.”


That’s it for this week’s round-up. We hope you found it useful.

We’ll be back next week with the biggest and most interesting news stories, all rounded up in one place.

In the meantime, if you missed it, check out last week’s round-up. Alternatively, you can view our full archive.


Security Spotlight

To get news of the latest data breaches and cyber attacks straight to your inbox, subscribe to our weekly newsletter: the Security Spotlight.

Every Tuesday, you’ll get a short email with:

  • Industry news, including this weekly round-up
  • Our latest research and statistics
  • Free useful resources
  • Upcoming webinars
  • Other ways we can help