Breach, Decentralized identity and verifiable credentials

Third-party breach hits HealthEquity

Major U.S. healthcare fintech firm HealthEquity has disclosed having some of its members' personally identifiable data and protected health information exfiltrated following the breach of an account belonging to a third-party business partner earlier this year, according to The Cyber Express.

Despite the theft of data from the partner's systems, operations at HealthEquity have continued as there has been no evidence suggesting additional systems compromise, said the firm in a filing with the U.S. Securities and Exchange Commission. No further information regarding the third-party breach was provided but a recent statement from the Kentucky Gov. Andy Beshear detailed a May notification from HealthEquity regarding fraudulent updates impacting nearly 450 Kentucky Employees' Health Plan members. "Immediately upon becoming aware of this potential fraud event, HealthEquity locked all affected member accounts, removed any unauthorized profile changes, and suspended the ability to edit account login information," said Beshear, who also noted HealthEquity's ongoing efforts to bolster accounts security.

Related

Hacker of SEC’s X account sentenced after admitting guilt

After infiltrating the SEC's X account via SIM swapping conducted with the help of his co-conspirators, Council proceeded to post fraudulent information regarding the planned approval of cryptocurrency-containing exchange-traded funds, which resulted in a Bitcoin price spike, according to the Justice Department.

Extensive Israeli police breach alleged by Iran-linked hackers

Purportedly included in the exfiltrated information were officers' personal details and photos, gun licenses, email addresses, suspects' and criminals' personal data, sex offender employment permit details, and other classified documents, according to Handala, which also alleged the compromise of Israeli Ministry of National Security servers.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy.

Related Terms

Access MatrixAttack VectorBasic AuthenticationBiometricsCertificate-Based AuthenticationChallenge-Handshake Authentication Protocol (CHAP)Digest AuthenticationDigital CertificateDiscretionary Access Control (DAC)

You can skip this ad in 5 seconds