Breach

Data stolen by a former Nuance employee, who has since been arrested and indicted, include demographic information, birthdates, addresses, hospital records, and other medical details.

Included in the leaked data, which was spread across 21 links, were parent directories and torrent files, as well as compressed archives from U.S. banking-as-a-service provider Evolve Bank and Trust.

The county Department of Public Health disclosed the breach of data belonging to over 200,000 individuals.

Threat actors were able to access LivaNova's IT systems on Oct. 26, enabling the theft of individuals' names, birthdates, addresses, Social Security numbers, phone numbers, email addresses, medical details, and health insurance data.

The breach is believed by the firm to have been conducted by North Korean hacking collective Lazarus Group.

Information claimed to have been exfiltrated included full names, birthdates, gender, birthdates, email addresses, usernames, and hashed passwords.

Attackers may have obtained patients' personal data, health information, health insurance details, and billings, claims, and payment data.

Security pros say the follow-up social engineering attacks CDK's auto dealer customers experienced are standard fare today – so companies must stay vigilant.