Skye Ryan reports: A privacy breach of BC Pension Corporation data has left thousands vulnerable to identity theft and those who were impacted wonder why it has taken the corporation two months to notify them. The breach was confirmed Jan. 28 but victims are just learning about the breach now and are being told their…
Month: April 2019
Is a third-party incident about to fuel a health insurance fraud ring?
Despite the fact that we are constantly bombarded with reports of breaches, there are even more breaches that seem to escape media coverage. I’ve been wondering about whether something I noticed recently might be something that will be used to fuel an insurance fraud operation. My curiosity was triggered when I read a notification from…
Health data breaches due to external actors continue to predominate recently.
Because I’m at a conference, it’s been hard to update a lot, but here are a few of the health data breaches I’ve spotted this week: Main Line Endoscopy Centers in Pennsylvania announced that it recently mailed notifications to patients whose personal information was in an employee’s email account a t the time that the…
“Team_Orangeworm” issues new threats to CarePartners
Hackers who claimed to have stolen all of a Canadian home healthcare agency’s patient and employee data have issued a deadline and new threat to their victim: either pay us or we will start contacting your patients and giving data to the Ontario privacy commissioner’s office. And to prove their claim that they have sensitive…
This prolific phishing gang is back with new tactics to target executives
Danny Palmer reports: A prolific cyber criminal phishing operation which built a list of 50,000 executives, CFOs and other top financial personnel has expanded its operations with a new database of additional targets. Initially uncovered by researchers at cyber security company Agari, the Business Email Compromise (BEC) group dubbed London Blue distributes phishing emails in…
Researcher publishes Google Chrome exploit
Catalin Cimpanu reports: A security researcher has published today proof-of-concept code for an unpatched Google Chrome vulnerability. The security flaw has been fixed in V8, Chrome’s JavaScript engine, but the fix has not yet reached the browser’s stable version –v73– the one used by an estimated over one billion users. Read more on ZDNet.