Marco A. De Felice aka @amvinfe reports: The RansomHub group made headlines last February when, following a cyberattack on Change Healthcare, they disrupted operations for several weeks. Change Healthcare is the largest U.S. provider of revenue and payment cycle management, connecting payers, providers, and patients within the American healthcare system. A week ago, a RansomHub affiliate successfully…
Author: Dissent
Sg: Software firm fined $74k for data breach caused by weak password; half a million users affected
Ang Qing reports from Singapore: A company running online language lessons for children around the world used a password based on its website name, LingoAce, making it vulnerable to the data breach that resulted. More than half a million users were affected. Among personal data compromised were the cellphone numbers, bank account numbers, signatures and…
Almost all citizens of city of Eindhoven have their personal data exposed
Graham Cluley reports: A data breach involving the Dutch city of Eindhoven left the personal information related to almost all of its citizens exposed. As Eindhovens Dagblad reports, two files containing the personal data of 221,511 inhabitants of Eindhoven were accessible to unauthorised parties for a period of time last year. Everyone who lives in the Netherlands…
LifeLabs to appeal court’s decision to release Ontario IPC and BC OIPC breach investigation report
The Office of the Information & Privacy Commissioner for British Columbia issued the following statement on May 23 about a case that raises issues of transparency and claims of privileged information: LifeLabs has announced that it is seeking leave to appeal a court ruling upholding the decision of the Information and Privacy Commissioner of Ontario…
Za: Justice department suffers another cyber attack
Admire Moyo reports: The Department of Justice and Constitutional Development (DJ&CD) has suffered a cyber security incident affecting child maintenance payments. In a statement yesterday, the department advised the public its electronic payment system for third-party funds, including child maintenance, has been temporarily suspended following attempts to compromise the system. According to the department, an…
Backdoor found in court AV recording software
Catalin Cimpanu reports: Cybersecurity researchers from Rapid7 and S2W have found a backdoor trojan inside a popular app used for recording courtroom and jury meetings. The malware was found in the installer for JAVS Viewer, version 8.3.7, an app from Justice AV Solutions that allows customers to play back older recordings. JAVS customers who downloaded the official installer from the…