Cybersecurity and Data Privacy in the USA: January 8 – 14, 2024

Welcome to this week’s round-up of the biggest and most interesting news stories in the USA.

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks.


Publicly disclosed data breaches and cyber attacks: in the spotlight

Unprotected Raptor Technologies database exposes more than 4 million records

The cybersecurity researcher Jeremiah Fowler has discovered an unprotected database containing 4,024,001 data records belonging to the Texan school security company Raptor Technologies. Exposed data included sensitive information related to students, teachers and parents, and school safety plans or procedures.

Data breached: 4,024,001 records.

NASCO notifies customers of data breach: 1,696,867 individuals affected

NASCO, a provider of health plan benefits administration, has notified its customers that their data was exposed as a result of the May 2023 MOVEit Transfer breach. According to its amended data breach notification, it learned of the incident on July 12, 2023.

Data breached: 1,696,867 records. 


Publicly disclosed data breaches and cyber attacks in the USA: full list

This week, we’ve found 9,644,671 records known to be compromised in the USA, and 66 U.S. organizations suffering a newly disclosed incident. 62 of them are known to have had data breached. Only 3 definitely haven’t had data breached.

We’ve also found 14 U.S. organizations providing a significant update on a previously disclosed incident.

Organization(s)SectorData breached?Known records breached
Raptor Technologies, LLC
Source
(New)
IT servicesYes4,024,001
NASCO
Source 1; source 2
(Update)
InsuranceYes1,696,867
Fidelity National Financial
Source 1; source 2
(Update)
FinanceYes1,300,000
Halara
Source
(Update)
RetailYes941,910
Hi-Cone
Source
(New)
ManufacturingYes650 GB
Health Alliance Hospital Mary’s Avenue Campus
Source 1; source 2
(New)
Health careYes264,197
Singing River Health System
Source
(New)
Health careYes252,890
The Harris Center for Mental Health and IDD
Source 1; source 2
(New)
Health careYes238,463
Eckell Sparks
Source
(New)
LegalYes175 GB
Acutis Diagnostics
Source 1; source 2
(New)
Health careYes137 GB
Independent Living Systems, LLC
Source 1; source 2; source 3
(Update)
Health careYes123,651
Cooper Aerobics
Source 1; source 2
(Update)
Health careYes89,399
HMG Healthcare
Source 1; source 2; source 3
(New)
Health careYes80,000
Senior PsychCare
Source
(New)
Health careYes65,193
Arrowhead Regional Computing Consortium
Source
(New)
FinanceYes65,010
Asbury Automotive Group
Source 1; source 2
(New)
ManufacturingYes62 GB
Milliman, Inc.
Source 1; source 2
(Update)
Professional servicesYes56,457
Highlands Oncology Group
Source 1; source 2; source 3
(Update)
Health careYes55,297
Charm Sciences, Inc.
Source
(New)
ManufacturingYes42 GB
U.S. Drug Mart
Source 1; source 2
(Update)
Health careYes36,749
Elliott Group
Source
(New)
ManufacturingYes31.5 GB
Dedicated Transportation Solutions
Source
(New)
TransportYes34 GB
Burr & Forman LLP
Source
(New)
LegalYes19,893
Academy Mortgage Corporation
Source 1; source 2
(Update)
FinanceYes18,290
EvolvE Cryo + Wellness
Source
(New)
Health careYes14,000
Premium Mortgage Corporation
Source
(New)
FinanceYes10,835
Tarrytown Expocare Pharmacy
Source 1; source 2
(Update)
Health careYes10,708
Centennial Bank
Source
(New)
FinanceYes10,008
Intercity Investments, Inc.
Source
(New)
Real estateYes10 GB
Unitex
Source
(New)
ManufacturingYes9.5 GB
CBIZ KA
Source 1; source 2
(Update)
Health careYes9,129
Sharp Health Plan
Source
(New)
InsuranceYes8,200
Nautic Partners LLC
Source
(New)
FinanceYes7,870
Carnegie Mellon University
Source
(New)
EducationYes7,343
HairClub
Source
(New)
RetailYes4,334
Rebekah Children’s Services
Source
(New)
Non-profitYes2,805
Butte School District
Source 1; source 2
(Update)
EducationYes2,658
Dignity Health Nevada St. Rose Dominican Hospital
Source
(New)
Health careYes2,652
DentalXChange
Source 1; source 2
(New)
SoftwareYes2,574
Walker County, Texas
Source
(New)
PublicYes2,420
Hi-Crush
Source 1; source 2
(New)
EnergyYes1,902
Villager Construction, Inc.
Source
(New)
ConstructionYes1,380
One Stop Financial Services
Source
(New)
FinanceYes1,179
Tampa Bay Surgical Group
Source
(New)
Health careYes1,107
Essen Health Care
Source 1; source 2
(Update)
Health careYes1,104
Whitley Penn
Source
(New)
FinanceYes605
Music Institute of Chicago
Source
(New)
Non-profitYes605
Marvel Consultants
Source
(New)
Professional servicesYes593
Dallas County
Source 1; source 2
(New)
PublicYes501
Mount Carmel Care Center
Source 1; source 2
(New)
Health careYes501
Waterford Country School
Source 1; source 2
(New)
EducationYes500
Toyota Financial Services
Source 1; source 2
(Update)
FinanceYes490
American Meat Companies
Source
(New)
ManufacturingYes367
TBM Consulting Group
Source
(New)
Professional servicesYes298
Capital Formation Group, Inc.
Source
(New)
FinanceYes274
Coastal Plains
Source 1; source 2
(Update)
Health careYes250
Golf & Ski Warehouse
Source
(New)
RetailYes122
North Alabama Chapter of the Information System Security Association
Source
(New)
CybersecurityYesUnknown
Arlington Public Schools
Source
(New)
EducationYesUnknown
Equitrans Midstream Corporation
Source 1; source 2
(New)
EnergyYesUnknown
CFD Investments
Source
(New)
FinanceYesUnknown
Keating Consulting Group
Source
(New)
FinanceYesUnknown
Oregon Pacific Bank
Source
(New)
FinanceYesUnknown
Allied Wound Care Specialist
Source
(New)
Health careYesUnknown
CellNetix Pathology and Laboratories
Source 1; source 2
(New)
Health careYesUnknown
CINQCARE
Source 1; source 2
(New)
Health careYesUnknown
Morgan Pilate LLC
Source
(New)
LegalYesUnknown
Indigo Sky Casino
Source
(New)
LeisureYesUnknown
Amenitek Inc.
Source
(New)
ManufacturingYesUnknown
Corinth Coca-Cola Bottling Group
Source
(New)
ManufacturingYesUnknown
Framework
Source
(New)
ManufacturingYesUnknown
Lee Spring
Source
(New)
ManufacturingYesUnknown
Water for People
Source 1; source 2
(New)
Non-profitYesUnknown
Carta
Source
(New)
SoftwareYesUnknown
Resend
Source
(New)
SoftwareYesUnknown
Medjet
Source 1; source 2
(New)
TransportYesUnknown
Kraken Digital Asset Exchange
Source
(New)
CryptoUnknownUnknown
Alabama Medical Cannabis Commission
Source
(New)
Health careNo0
U.S. Securities and Exchange Commission
Source 1; source 2
(New)
PublicNo0
NETGEAR
Source
(New)
TelecomsNo0

Note 1: ‘New’/‘Update’ in the first column refers to whether this breach was first publicly disclosed this week, or whether a significant update was released this week. The updated data point is italicized in the table.

Note 2: For incidents where we only know the file size of the data breached, we use the formula 1 MB = 1 record. Given that we can’t know the exact numbers, as it depends on the types of records included (e.g. pictures and medical histories are considerably larger files than just names and addresses), we err on the side of caution by using this formula. We believe that this underestimates the records breached in most cases, but it is more accurate than not providing a number at all.


AI

NSA uses AI and ML to detect malicious Chinese cyber activity

Rob Joyce, the director of the U.S. National Security Agency’s Cybersecurity Directorate, told the International Conference on Cyber Security at Fordham University earlier this month that the NSA is using AI and machine learning to detect Chinese attacks on U.S. critical infrastructure.


Enforcement

Former vice president of Commonwealth Health Corporation sentenced to probation for HIPAA violation

Mark Kevin Robison, a former vice president of Commonwealth Health Corporation (now Med Center Health) in Kentucky, has been sentenced to two years’ probation and ordered to pay $140,000 after reaching a plea agreement with federal prosecutors over a HIPAA violation.


Other news

Multiple security vulnerabilities discovered in Bosch Rexroth torque wrench

Researchers at Nozomi Networks Labs have identified security vulnerabilities affecting the Bosch NXA015S-36V-B handheld pneumatic torque wrench and its NEXO-OS operating system. According to Bosch, the vulnerabilities could allow attackers to, among other things, read, upload, download, and delete arbitrary files in all paths of the system; inject and execute arbitrary client-side script code or arbitrary HTTP response headers, or manipulate HTTP response bodies, inside a victim’s session; perform denial-of-service attacks; and access sensitive data inside exported packages.


That’s it for this week’s round-up. We hope you found it useful.

We’ll be back next week with the biggest and most interesting news stories, all rounded up in one place.

In the meantime, if you missed it, check out last week’s round-up. Alternatively, you can view our full archive.