In doing some of my weekly investigating, I discovered that OCR seems to have closed its investigation into the Bizmatics, Inc. breach that affected an untold number of PrognoCIS customers and their patients. At last count, I think we knew about almost 300,000 patients that were notified of an incident where Bizmatics could not even…
Month: August 2016
Details emerge on Cefalu Eye-Tech of Green breach
As much as I try to find or obtain details on breaches in a timely fashion, it’s not always possible. For example, this month, there are several entities who reported breaches to HHS but have not responded to email and/or phone requests from this site for explanations of their incidents. But now we finally have…
Dropbox: Resetting passwords to keep your files safe
It looks like Dropbox had a late discovery on scope of a previously reported breach. From their blog yesterday: If you signed up for Dropbox prior to mid-2012 and haven’t changed your password since, you’ll be prompted to update it the next time you sign in. We’re doing this purely as a preventive measure, and there is…
More than 1500 BNZ customer’s confidential information compromised in data glitch
Emily van Velthooven reports: A Waikato woman, who chose to remain anonymous, contacted ONE News claiming she had received an email from BNZ disclosing bank information for a local business. She says she received an email on Tuesday morning listing the account details of a large business. “It had the date, bank account names, balances,…
Unorthodox Muddy Waters Partnership Targets St. Jude’s Devices
More on a situation I noted yesterday. This approach to using/monetizing vulnerability discoveries is downright scary…. but will it work to improve security? Here’s one of your must-reads for today. Jordan Robertson and Michael Riley report: When a team of hackers discovered that St. Jude Medical Inc.’s pacemakers and defibrillators had security vulnerabilities that could put…
6 in 10 UK Universities Hit by Ransomware, 4 in 10 Targeted Multiple Times
Catalin Cimpanu reports: Six out of ten UK universities admitted to falling victims to ransomware attacks, according to mobile security firm SentinelOne, who has sent Freedom of Information (FOI) request to 71 institutions across Britain. The company says that 13 universities refused to answer its request for information, claiming the response would damage their commercial…