Quinlan Bentley reports: Cincinnati State Technical Community College says a cybersecurity breach potentially exposed personal information stored on its network. The Clifton-based college detected unauthorized access to the network on Nov. 2 and an investigation was launched in consultation with outside cybersecurity professionals, according to a notice posted to Cincinnati State’s website on Friday. Read more at…
Author: Dissent
Queensland University of Technology shuts IT systems after being hit by ransomware attack by Royal Team
Lillian Rangiah reports: A cyber attack at Queensland’s second-largest university has caused campus printers to spit out ransomware notes in bulk. The Queensland University of Technology has shut down multiple IT systems as a precaution. QUT Vice-Chancellor Professor Margaret Sheil said her own printer was among those affected this morning. Read more at ABC (AU)
Ca: Doctor’s records improperly disposed
Patient records from a newly closed medical practice were not properly disposed of the privacy commissioner has ruled. Dr. Lalita Malhotra, who retired earlier this year, failed to have all records shredded by a company that deals in secure shredding and some ended up whole in a recycling facility. “Dr. Malhotra states that she accepts…
Claimant to Maintain Anonymity in English High Court Cyber Attack Case
Hunton Andrews Kurth writes: On December 20, 2022, the English High Court has granted the victim of a cyber attack a permanent injunction against cyber attackers whilst the victim organization maintains its anonymity. Generally, a claimant’s identity is public in English court proceedings. Injunctions can be made against unknown and unidentifiable defendants enabling them to…
Standing to Sue: Is Theft of Drivers’ License Numbers Sufficient to Allege Imminent Threat of Future Harm?
Ryan P. Blaney, Margaret A. Dale, Nolan Goldberg, and Amy Gordon of Proskauer write: Judge Jeffrey White of the Northern District of California recently dismissed a putative class action lawsuit in which plaintiffs claimed they faced an imminent threat of future of harm in the form of identity theft and fraud because their personal information,…
Update to LastPass incident: Customers should read it
From an update from LastPass: Based on our investigation to date, we have learned that an unknown threat actor accessed a cloud-based storage environment leveraging information obtained from the incident we previously disclosed in August of 2022. While no customer data was accessed during the August 2022 incident, some source code and technical information were…