Massachusetts
‘Don’t assume you are safe’: Data breaches spike in Massachusetts, following national trend – The Boston Globe
Micale said she quickly called up her bank and put a freeze on her account. But that put her trip to Boston with her husband, the first after over a year of long COVID, on hold.
“It was really stressful,” she said. “I had to cancel all my reservations and start over from scratch.”
Micale is far from the only Massachusetts resident to be impacted by a data breach in recent years.
A new Globe analysis of state data shows just how off-the-charts the problem has become. In 2022, 1.9 million Massachusetts resident accounts were impacted by data breaches. The following year, that number spiked to more than 6.9 million accounts, fueled in part by large-scale breaches, including one that affected more than 2 million Harvard Pilgrim Health Care accounts.
So far this year, the numbers are already above the historical average, though not quite as striking as 2023, with 1.8 million accounts breached through September.
The overall uptick is “a trend around the world,” said Stuart Madnick codirector of MIT’s flagship cybersecurity consortium. “It’s no surprise that Massachusetts is part of the uptick.”
As more data than ever, including sensitive personal banking and health care information, is stored on the internet, breaches are becoming increasingly common, he and others said. Meanwhile, hacker groups are also becoming more sophisticated, putting more people at risk of fraud and identity theft.
Across the United States, an estimated 353 million accounts fell victim to data breaches last year, according to the Identity Theft Resource Center, a national nonprofit that provides cost-free assistance to identity theft victims. The total number of breaches was 72 percent higher than the previous record year of 2021.
Data breach victims can suffer serious financial and personal repercussions after their information is compromised. For consumers, their financial information could be sold on the dark web, where scammers can purchase it and rack up debt in their name.
The burden of dealing with the consequences, such as contesting fraudulent charges, often falls on consumers.
Doing so can prove challenging even for tech-savvy people like Leigh Graham, a Johns Hopkins researcher, whose personal data has been breached at least twice in the past year, including when her employer was breached.
Graham, who lives in Northampton, said she struggled to navigate credit bureau websites to freeze her credit report after she noticed that someone spent $550 on Ticketmaster in her name.
“I’m 49, but I feel like I don’t understand what I’m looking at,” she said. “The onus is so on the individual consumer to fix everything.”
Companies impacted by data breaches may find themselves paying hefty ransom to keep their clients’ data from being published online.
That’s what happened to Change Healthcare, a subsidiary of United Health, a national conglomerate. It paid a $22 million ransom earlier this year to a hacking group that stole protected health information from their systems. The health care group acknowledged that the stolen data could include information on a “substantial proportion of people in America.” Massachusetts data indicates that tens of thousands of residents were caught up in the breach.
Screenshots of some of the hacked data ended up online, despite the ransom payment. The hack also reportedly led to problems for patients in getting prescriptions approved at hundreds of medical facilities across the country.
In Massachusetts, both national behemoths, like T-Mobile, and smaller organizations, like the Roman Catholic Diocese of Fall River, have been hit by data breaches in recent years, data shows. Even state government employees have been targeted.
At smaller organizations, experts say it’s a daunting task for IT teams with limited resources to compete with large international hacking organizations.
“A lot of [small] organizations have to face a cost-benefit tradeoff, and sometimes just have to accept a certain level of risk,” said Saroja Hanasoge, director of advisory services at CyberTrust Massachusetts, which partners with cities and organizations across the state to beef up their cybersecurity.
The largest reported hack affecting Massachusetts residents since 2017 happened last year, when Harvard Pilgrim Health Care revealed a breach that affected over 2.1 million state client accounts. Harvard Pilgrim is a subsidiary of Point32Health, the second biggest health insurance company in the state, and provides coverage at dozens of hospitals in Massachusetts alone.
In an open letter written to clients after the hack, the nonprofit said hackers may have gotten access to files containing client names, Social Security numbers, dates of birth, tax identification numbers, and patient clinical information, such as medical diagnoses and treatments.
“We want to assure you that we are taking this incident extremely seriously, and we deeply regret any inconvenience this incident may cause,” the group’s letter said.
A spokesperson for Harvard Pilgrim declined to speak about the breach.
Bad actors are becoming more sophisticated
Experts say it’s now far easier for bad actors to go online and buy hacking services at low cost, often using cryptocurrencies like Bitcoin.
For-hire hacking groups do a lot of the technical work that everyday thieves would ordinarily not have the know-how to pull off, said Kevin Powers, director of the cybersecurity program at Boston College. Some of the hacking groups even offer affordable subscriptions.
For as little as $40 a month “you can get yourself a monthly subscription for a criminal enterprise,” Powers said.
He added that schemers also now use artificial intelligence services available on the dark web that are built to make hacking easy. Many hacking groups have begun using the AI services to make highly personalized phishing emails that are much harder to spot as fraudulent.
Even in cases where federal investigators manage to shut down a big hacking network, they will often reappear online, sometimes from a different country.
Hackers also have the benefit of bigger and easier targets to crack in recent years, as a growing number of companies are putting troves of data on poorly set up cloud servers with minimal protections.
“The bad guys are getting badder faster than the good guys are getting better,” Madnick of MIT said.
Some of those bad guys have even managed to break into Madnick’s accounts multiple times.
“You can be the most careful person in the world and there is no way to guarantee they won’t break in,” he said. “Don’t assume you are safe.”
Scooty Nickerson can be reached at scooty.nickerson@globe.com.
Massachusetts
Two men indicted for Hinsdale robbery after ‘cigarette trail’ leads through Vermont, Massachusetts
HINSDALE, N.H. (ABC22/FOX44) – Two men from Massachusetts have been indicted after they allegedly stole more than $200,000 in cigarettes and fled in a stolen U-Haul van before setting it on fire.
According to court documents, the men robbed the T-Bird Mini Mart on Brattleboro Road in Hinsdale, New Hampshire back on March 15. They then allegedly drove the U-Haul north into Brattleboro, Vermont before heading south on Interstate 91 down in Massachusetts.
Cartons of cigarettes reportedly fell from the back of the van as it drove through Brattleboro, which were estimated to be worth more than $50,000. The “trail of cigarettes” was reportedly used by investigators examining surveillance footage to track the path of the van leading up to the arrest of two suspects last week.
Richard Conner, 64, of Greenfield, Massachusetts, and James Ferguson, 66, of Worcester, Massachusetts, were arrested on Friday.
According to court documents, Ferguson was also seen on camera earlier in March stealing the U-Haul van in Northampton, Massachusetts.
The two men now face federal charges under the Hobbs Act and, if convicted, could spend up to 20 years in prison.
BOSTON (WWLP) – The Healey-Driscoll Administration and the Massachusetts Department of Conservation and Recreation announced the opening of 24 swimming pools for the summer season across the state.
This initiative includes the return of its free Learn to Swim Program for children and expanded lifeguard services at 30 DCR swimming areas. Registration for the free swimming lessons begins on Monday, June 22, providing children between the ages of 4 and 12 the opportunity to learn life-saving skills.
The DCR’s efforts aim to provide residents, visitors and families with safe places to swim and cool off during the summer. This commitment to water safety is supported by extending lifeguard coverage to seven days a week, which began last Saturday, running from 10:15 a.m. to 5:45 p.m., though continued coverage is subject to staff availability.
DCR Commissioner Nicole LaChapelle emphasized the importance of aquatic education. “Every child deserves the opportunity to learn how to swim. Swimming is more than a summer activity –it’s a life-saving skill that helps children safely enjoy our pools, lakes and beaches with confidence,” LaChapelle said. “By offering free swimming lessons at pools across Massachusetts, we’re helping remove barriers for families while helping more children safely enjoy the outdoor spaces that belong to all of us.”
The Learn to Swim Program will be offered at 19 DCR pools throughout Massachusetts and is structured into three sessions during the summer. Each session consists of eight half-hour group swim classes tailored for beginner-level swimmers and organized by age.
The curriculum for the classes is based on the American Red Cross and focuses on water safety and basic swimming skills. Registration is required and will operate on a first-come, first-served basis, closing once classes at each facility are full.
Participating DCR pools for the program are located in Agawam, Boston, Cambridge, Chelsea, Chicopee, Clinton, Fall River, Fitchburg, Hyde Park, Lawrence, Malden, Melrose, Milford, Somerville, Springfield, Watertown and Worcester.
The DCR is also actively recruiting certified lifeguards for its beaches and swimming pools for the current summer season. Positions are available through Labor Day and offer competitive hourly wages ranging from $22 to $27, depending on the position and associated certifications. More information about lifeguarding opportunities and application details are available on the agency’s lifeguarding webpage.
Beyond lifeguard services, the DCR maintains water safety at its state beaches and waterfronts through regular water quality testing at all 79 designated swimming areas. These areas are equipped with ropes and buoys to delineate swimming sections. Safety signage, which can be translated into nine languages including Spanish, Portuguese, Vietnamese and Traditional Chinese via a QR code, is also present.
To enhance safety, life rings are available for public use at both guarded and unguarded swimming areas in case of an emergency. All DCR swimming pools are equipped with chair lifts to provide water access. Several pools also feature ramps or zero-depth entry and select pools and spray decks offer beach wheelchairs for use.
All facts in this report were gathered by journalists employed by WWLP. Artificial intelligence tools were used to reformat information into a news article for our website. This report was edited and fact-checked by WWLP staff before being published.
Local News Headlines
WWLP-22News, an NBC affiliate, began broadcasting in March 1953 to provide local news, network, syndicated, and local programming to western Massachusetts. Download the 22News Plus app on your TV to watch live-streaming newscasts and video on demand.
If you watch a movie, send an email, or put your photos in the cloud, there is a data center involved. With the rise of AI, there is more need for data storage and that means more power and more water. So, more Massachusetts communities are saying they don’t want them.
Data centers are growing increasingly unpopular. How unpopular? Polling shows people would rather live near a nuclear power plant. A Gallup poll found 71% of Americans would oppose a data center being built near their home and 53% would oppose a nuclear reactor.
Communities across the country have been fighting to stop the construction of mega sized data centers used to power the future of artificial intelligence.
In Massachusetts, several projects have been put on hold. The city of Lowell recently passed a one-year moratorium to stop the building or expansion of data centers. Lowell is the site of the largest data center in the state.
Markley data center in Lowell
The Markley data center is a mammoth building. It was built by Markley in 2015 on the site of an old Prince Spaghetti factory. Markley cleaned up the lot, painted the building black and set up a complex digital warehouse which stores data from more than a hundred customers ranging from hospitals to universities to police stations.
Like all things data center, this one comes with controversy. Jake Fortes lives in his childhood home where he takes care of his elderly parents. The data center, about 100 feet away, dwarfs his home.
Fortes says the building has nicknames including the “dungeon” and the “Death Star.”
“It’s nicknamed by a lot of residents in the neighborhood the dungeon,” Fortes said. “Because it seriously is just this black building that looms over us.”
Fortes said the rows of industrial air conditioners on the roof of the data center constantly hum and he claims exhaust from the four metal chimneys that rise from the data center’s emergency generators flow toward his bedroom windows.
“You will hear the A/C units. That’s a constant. And it’s worse in the summer,” Fortes said.
Markley has two data centers in Massachusetts. They built their first on top of Macy’s in downtown Boston in 2013.
From Lowell to Los Angeles, there are coast to coast concerns about what these data centers can do to the environment. From the massive amount of energy they use, to the incredible amount of water they need to keep the equipment from overheating. Some large data centers can use up to five million gallons of water every day. But the owners of the Lowell data center say it is not a drain on resources.
WBZ-TV’s David Wade asked Markley for tour of the data center, which they never do, and they agreed. They have grown frustrated with the negative narrative of data centers across the country and wanted to show they are different than the huge data centers built solely for AI companies.
Markley’s corporate VP Adam Burnham took him around the 350,000 square foot facility. The front entrance is teeming with a few dozen people, filled with colorful artwork and a TV monitor showing old video of a train that used to run through the property.
Beyond that there are long hallways with white tile floors and white walls that lead to rooms full of loud machines taking in, transforming and distributing large amounts of electricity throughout the building. How much electricity? Markley doesn’t say. Most data centers don’t. It’s why some lawmakers like Senator Elizabeth Warren are calling for more transparency from all data centers. But Markley’s Boston location boasts up to 30 megawatts of power, which is comparable to what tens of thousands of homes could use at any given time.
“Many petabytes” of data
There is a constant hum from the air conditioning machinery that helps to cool down the racks of servers.
How many servers are in the building? “There must be thousands,” Burnham said. “From hundreds of different customers.”
And how much data is that? “It would be hard to even quantify it. To use technical terms, it would be petabytes,” Burnham said. “Many petabytes for many customers.”
You have heard of megabytes and gigabytes but what is a petabyte? Well, just one petabyte is equal to roughly 250 million high resolution photos or the storage capacity of 250,000 smartphones or 13 years’ worth of continuous high-definition movies.
Markley says it stores data from all different types of companies. Financial companies, life science companies, universities, public safety companies. All those servers need lots of water to feed the system that keeps them cool.
How much water is used?
Some data centers use millions of gallons of water every single day. Markley says over the past year, they have used between 60,000 and 120,000 gallons of water per day. Those numbers match up with some of their water bills that WBZ was able to obtain.
Besides the effect on water and power, another criticism of data centers is once construction is done, they don’t create many jobs. Markley brought Lou Antonellis, a representative from the IBEW, an electrical workers union, to our shoot. Wade asked how many union workers he had working inside the building.
“Right now, it’s a little bit of a slow period. Probably about a dozen,” Antonellis said. That’s it. A dozen. Antonellis said there were also another dozen pipe fitters inside. He said there can be 80-100 workers when there’s a big project on site.
Hopes to expand in Lowell
But Antonellis and the IBEW say they really want Markley to expand. New buildings mean new construction jobs. WBZ learned Markley has been buying more land nearby with hopes of expanding, including an old power plant up the road. But they have a problem. The city of Lowell recently voted for a one-year moratorium on data centers. It means no new building, and no expansion.
On the final stop on the tour, the Markley people wanted to show the emergency generators that neighbors have complained about.
An hour earlier, Jake Fortes, the neighbor who calls the building the Death Star, had predicted they would take David Wade to the generators, and it would be less noisy than usual.
“Usually when they detect that there’s a reporter coming, they will turn it off and it will go very quiet and you will hear the birds,” Fortes said.
When they took David Wade to the emergency generators, which they fire up for a test every week for five minutes, you could barely hear the machines over the sounds of chirping birds.
“So, it’s not under a complete load, but this is the typical noise you’re going to get,” Burnham said.
Wade asked if the generators weren’t running at “full load” were they running at 20%, 50%, 80%? They couldn’t answer.
Then Wade asked if he thought neighbors had been exaggerating about the noise at the data center and the answer was clear. “I think they’re exaggerating, yes,” Burnham said.
If you have a question you’d like us to look into, please email questioneverything@cbsboston.com.
-
California3 minutes agoCalifornia lawmakers seek $32M to combat invasive pest found on grapevines sold at Costco
-
Colorado10 minutes agoColorado’s Deion Sanders With Controversial Big 12 Coach Ranking
-
Connecticut13 minutes agoSierra Club Connecticut, State Representatives Host Black Lungs Matter: Juneteenth Press Event – CleanTechnica
-
Delaware18 minutes agoFrom blueprint to breakthrough: Tackling affordable housing in Wilmington
-
Florida25 minutes agoWeather Aware Day declared for Friday as heat and strong storms threaten Central Florida
-
Georgia28 minutes agoDHS appears to axe plan to construct immigration detention megacenter in small Georgia town
-
Hawaii33 minutes agoAmbassadors of aloha: Food events aim to boost tourism with unique Hawaii-made products
-
Idaho40 minutes agoIdaho State Police arrest Dillon Thorpe on rape, child enticement charges in Elmore County
