Public Cloud Security Breaches

The Commonwealth Healthcare Corporation experienced a security incident where patient data and sensitive records were compromised due to vulnerabilities in the internal servers. This breach had a significant impact on the organization's reputation and the trust of patients, underscoring the importance of enhancing security protocols and being transparent in managing similar events.

MedData Inc. encountered a security incident when an employee unintentionally exposed the confidential health data of more than 135,000 people on the internet. In response, the organization informed the appropriate stakeholders, enhanced security measures, and dealt with a class action lawsuit settlement.

The Los Angeles Times website was compromised in February 2018 through a misconfigured AWS S3 bucket, allowing a cryptojacking script from Coinhive to be injected into their website. This script mined Monero using the processing power of the site's visitors. The incident showcased the need for better security practices like employing CSPM tools and integrity checks for web resources.

In August, a cyberattack targeted the Eastern Connecticut Health Network, leading to the unauthorized access and theft of personal data like employee and patient names, Social Security numbers, and confidential health and financial records.

The incident involving the LokiBot Malware led to the exposure of sensitive personal data and the possibility of substantial financial harm to the company that was targeted. This security breach underscores the importance of maintaining strong cybersecurity measures and ongoing surveillance to safeguard against malware risks.