Brad D. Williams reports: Critical infrastructure operators have long faced the formidable security challenges of zero-day vulnerabilities and advanced persistent threats (APTs), both of which were employed in some of the most prominent cyberattacks in the sectors to date. But one researcher is warning leaders in government and industry of an old threat that, fueled…
Month: July 2017
Rogue insiders can go undetected for a long time….
So how are you determining if your Business Associate or vendor has a rogue employee who may be stealing or misusing your patients’ protected health information? A notification from Anthem regarding an incident that affected more than 18,000 Medicare members in 21 states is a timely reminder that out of sight cannot mean out of mind…
Seagate To Settle Phishing Scam With $5.75M In-Kind Deal
Seagate was one of many companies whose employee W-2 data were phished in 2016. In September 2016, the employees sued over the incident. Now Dave Simpson reports that the suit has a tentative settlement: Seagate Technologies LLC has agreed to a settlement that includes services valued at $5.75 million to end a proposed class action…
Ola employee accused of data theft from Aadhaar website
The Business Standard reports: The Unique Identification Authority of India (UIDAI) has registered a case with the Bengaluru Police against Abhinav Srivastava and Qarth Technologies Pvt Ltd for misusing Aadhaar data obtained from its website without any authentication. Chennai-based Qarth Technologies was acquired by India’s largest taxi aggregator Ola in March last year, to help…
Plastic Surgery Associates of South Dakota notifies 10,200 after ransomware attack
From their web site, the practice’s notification. Note that some of the crucial data that might have enabled them to justify no need for notifications was lost/corrupted during the clean-up from the ransomware. Based on reports I’ve read over the past year, losing data during clean-up is not that rare, which should serve as a…
Health data breaches in 2017: The terrible, horrible, no good, very bad year? Join us for webinar!
By now, you’ve probably read at least a few reports on mid-year figures for breaches that suggest that 2017 is worse than 2016. In collaboration with Protenus, Inc., DataBreaches.net has worked up some mid-year figures for U.S. breaches involving health/medical data. Join me and Robert Lord of Protenus on Wednesday, August 2 at 1 pm,…