St. Vincent Medical Group in Indiana, a member of Ascension Health, has provided a substitute notice following an e-mail phishing incident. According to their notice, a copy of which is posted on their web site, on December 3, 2014, they learned that an employee’s user name and password had been compromised as a result of e-mail phishing….
Category: U.S.
Dem: USIS data breach affected more than 27K
Elise Viebeck reports: The number of individuals victimized in a cyberattack on a major background investigation service is higher than previously reported, the House Oversight Committee’s top Democrat said Wednesday. Rep. Elijah Cummings (D-Md.) reported that the initial estimate of 27,000 federal employees compromised in the breach of government contractor USIS is now believed to…
The Bad News For Infosec In The Target Settlement: OpEd
Giora Engel of LightCyber writes: The legal argument behind the $10 million Class Action lawsuit and subsequent settlement is a gross misrepresentation of how attackers operate. Central to the recent Target data breach lawsuit settlement was the idea that cyber attacks are mechanistic and follow a prescribed course or chain of events. The judge hearing the case…
Del. AG announces four privacy bills
Legal News Line reports: Delaware state legislators and Attorney General Matt Denn on Friday announced four bills that he says will help strengthen privacy laws when it comes to the Internet and social media. … The bills would tackle four different areas of online activity including: a Victim Online Privacy Act, a Delaware Online Privacy and…
“KYAnonymous,” the hacker who exposed Steubenville rapists, may get more prison time than the rapists
M. David reports: Deric Lostutter, the 26-year-old “hacktivist” who leaked the evidence that led to the conviction of two of the Steubenville, Ohio rapists is now facing more time behind bars than the rapists he exposed. The Steubenville Rape Case made national headlines when a video made by the rapists themselves, and their friends, proved that their victim…
‘Aaron’s Law’ focuses penalties on malicious hackers
Cory Bennett reports: Aaron’s Law is back in Congress. Named for Aaron Swartz — the programmer and digital activist who took his life while facing data theft charges — the bill would ease punishments stemming from the law under which Swartz was charged, the Computer Fraud and Abuse Act (CFAA). Rep. Zoe Lofgren (D-Calif.) is backing…