Hackers Zero In on Subs, Steal Kentucky Patient Data and Foul Web Developer Site

Flickr user Matthew C. Wright

Just another week in ThreatWatch, our regularly updated index of noteworthy data breaches.

In case you missed our coverage this week in ThreatWatchNextgov’s regularly updated index of cyber breaches:

Jimmy John’s Hack Only Recently Was Stopped

The sandwich chain learned of a payment system breach back on July 30, around the time KrebsOnSecurity first reported an investigation into the matter.

Ex-Worker Pocketed Employer’s Patient Data to Start Rival Firm

Owensboro Medical Practice in Kentucky and its business associate, Research Integrity, learned a spreadsheet containing protected health information was “wrongfully copied and removed from the offices of Research Integrity by a former employee,” a breach notification states.

jQuery Site Reroutes Systems Administrators to Malware

A toolkit used by developers of an estimated 70 percent of the 10,000 most popular websites was infected with code that can steal information from visitors’ computers, or, in this case, from Web systems developers.

Hackers Eye Visitors to Energy Startup’s Website

An unnamed startup firm was expected to attract many visitors from the oil and gas community after receiving sizable new funding, making it a prime place to spy on the community’s computers.