December appears to have been a rough month for Blue Cross Blue Shield of Michigan. Yesterday, I discovered that they had a second breach that was disclosed last month, although it seems to have flown under most media radar. The first breach, fairly widely reported already, involved a laptop stolen from a subsidiary’s employee that…
Month: January 2019
Ransomware, phishing attacks top new HHS list of cyberthreats in healthcare
Eli Richman reports: Email phishing attacks, ransomware attacks and attacks against connected medical devices are among the greatest cyberthreats that health systems need to protect against, according to new cybersecurity guidance for health systems from the Department of Health and Human Services.Released last week, the Health Industry Cybersecurity Practices were released to help the industry identify…
‘Town of Salem’ game suffers data breach exposing 7.6 million user details
Catalin Cimpanu reports: A hacker has stolen the personal details of 7.6 million users of browser-based game the “Town of Salem,” BlankMediaGames (BMG) admitted yesterday in a blog post. The hack came to light after a mysterious person sent a copy of the stolen data to DeHashed, a commercial data breach indexing service.DeHashed says it…
UN adopts India-backed data security resolutions
Dipanjan Roy Chaudhury reports: The United Nations has adopted two resolutions, proposed by Russia and backed by India, on International Information Security (IIS) system, marking progress towards creating the world’s first code of conduct in the digital sphere. This month the UN General Assembly adopted the two resolutions – ‘Developments in the field of information and telecommunications in the context…
Nearly 5 million passengers’ data leaked from online train ticketing platforms
Jill Shen reports: Data thieves stole the personal information of nearly 5 million people from an unconfirmed number of Chinese online ticket reservation platforms, according to Beijing police, who arrested a suspect in the case. According to media reports, China Railway’s (CR) official online booking platform 12306 suffered a massive data breach, with information later being sold…
Data leak shuts down Alaska’s PFD application website
KTUU reports that Alaska’s Permanent Fund Dividend web site is down and will remain down for now while the state investigates and remediates a data leak. ANCHORAGE, Alaska (KTUU) — Update: 10:27 p.m.:The Alaska Department of Revenue will not reopen the Permanent Fund Dividend application website until the integrity of filer information can be guaranteed, according…