From Greenway Health: TAMPA, April 24–An apparent criminal cyber attack that has affected a limited portion of its customers was reported today by Greenway Health to its affected customers, the company says. The incident involves “ransomware,” in which the attackers freeze access to data and offer to restore it in exchange for a ransom payment….
Month: April 2017
TN: School board sued by employees over W-2 breach
Tipton County Schools was one of the first districts to reveal that an employee had fallen for a W-2 phishing scheme this year. Now the district is being sued by its employees, it seems. Courthouse News reports: Employees of a rural Tennessee county’s school system claim in a $19 million federal class-action lawsuit that their…
What a decade of data breach investigations can teach us
George Nott has a good summary of some of the key findings in Verizon’s newest Data Breach Investigations Report. Some snippets: This year’s report – described by Verizon as an “InfoSec coddiwomple that has now culminated in a decade of nefarious deeds and malicious mayhem” – includes analysis on 42,068 incidents and 1,935 breaches from…
AU: Privacy breach costs $23,000 – but could have been worse
Alison Baker and Rhiannon Nixon of Hall & Wilcox write: The Office of the Australian Information Commissioner (OAIC) has ordered Comcare to pay a Defence Force employee $23,000 after it inadvertently published on its website personal information, including sensitive health information, about the employee. For organisations with obligations under the Privacy Act 1988 (Cth), this…
Ars Technica Live: Why it’s important to defend hackers, even the not nice ones
Cyrus Farivar reports: On June 13, 2017, Mark Jaffe is set to appear before the 9th US Circuit Court of Appeals in San Francisco to argue on behalf of his client, journalist Matthew Keys. And at the most recent Ars Live event, Jaffe spoke to David Kravets and me about this case and broader issues…
Info on Home Depot customers exposed (but no financial data)
Michael E. Kanell reports: A spread sheet listing about 8,000 customers, along with their transaction and a range of personal information, was posted for an unknown amount of time, on a Home Depot web site. No financial data was part of the list, which did not compare with the 2014 data breach in which hackers…