A Ukrainian hacktivist claims to have hacked and dumped 156 GB of patient data from Central Ohio Urology Group in Ohio. The alleged hack was announced Tuesday morning by the @PravSector account, who posted an unredacted screen shot and a link to the data dump on Google Drive. The data fields in the screen shot…
Category: Breach Incidents
DHS Announces Cyber Incident Reporting Information: US-CERT
The United States Department of Homeland Security (DHS) has released guidelines and points of contact for reporting cyber incidents to the Federal Government. This communication follows the recent release of Presidential Policy Directive 41 (PPD-41)—United States Cyber Incident Coordination—which outlines how the Federal Government will handle cyber incidents. Users and administrators are encouraged to review these documents…
UK: Bungling contractors throw out 500 confidential documents in Newcastle CQC office refurb blunder
Helen Whitehouse reports: Confidential documents detailing the backgrounds of hundreds of people have gone missing following an office upgrade blunder. Bungling Contractors threw out a locked filing cabinet containing up to 500 Disclosure and Barring Service (DBS) certificates for people who had applied to become registered managers and providers. The error, which happened during the…
HHS seeks threat information sharing system for health sector
Amanda Ziadeh reports: The Department of Health and Human Services is looking to strengthen the privacy and security of health care information by sharing cyber threat data with partner agencies and stakeholders. HHS’ Office of the National Coordinator for Health Information Technology and the Assistant Secretary for Preparedness and Response released funding opportunities for an…
Clinton campaign says data program accessed in cyber-attack on Democrats
Sam Thielman and Lauren Gambino report: A data program used by the campaign of the Democratic presidential candidate, Hillary Clinton, was “accessed” as a part of hack on the Democratic National Committee (DNC) that intelligence officials believe was carried out by Russia’s intelligence services, Clinton’s campaign said on Friday. […] Clinton spokesman Nick Merrill said…
Pregnancy-tracking app was riddled with vulnerabilities, exposing extremely sensitive personal information
Cory Doctorow reports: Consumer Reports Labs tested Glow, a very popular menstrual cycle/fertility-tracking app, and found that the app’s designers had made a number of fundamental errors in the security and privacy design of the app, which would make it easy for stalkers or griefers to take over the app, change users’ passwords, spy on…