October 16, 2024 New York State Department of Financial Services (DFS) Superintendent Adrienne A. Harris today issued new guidance to assist regulated entities in addressing and combating cybersecurity risks arising from artificial intelligence. The guidance builds on the Department’s ongoing work to protect New Yorkers and DFS-licensed entities from cybersecurity risks through its nation-leading cybersecurity…
Category: U.S.
Double trouble: DoctorsToYou has not one, but two data security incidents to address
On Wednesday, the RansomHub ransomware group added a listing for DoctorsToYou in New York to their leak site. Their listing included several screencaps that revealed personally identifiable information (PII) and protected health information (PHI). Some of the files specifically showed their name or letterhead. The listing did not indicate how many GB of data RansomHub…
Army to defend small businesses against hackers with NCODE secure cloud enclave pilot
Sydney J. Freedberg Jr. reports: AUSA 2024 — Army undersecretary Gabe Camarillo announced here Tuesday that the service would create a secure online enclave where small businesses can work with sensitive information under the Army’s protection — a potential lifeline for smaller firms struggling to meet Pentagon cybersecurity requirements and defend themselves against high-end threats like China. Known as…
Virginia Contractor Settles False Claims Act Liability for Failing to Secure Medicare Beneficiary Data
Here’s today’s reminder that it’s not just HHS OCR that entities need to be concerned about in terms of enforcement of data security requirements for health data. ASRC Federal Data Solutions LLC (AFDS), headquartered in Reston, Virginia, has agreed to resolve False Claims Act allegations in connection with a government contract related to its storage…
People charged up to $1,800 for water bill following Apex cyberattack
Elaina Athans reports from Apex, North Carolina: People have been coming to Apex Town Hall in droves to challenge their water bills, and Mayor Jacques Gilbert is encouraging residents to do exactly that. Some in the town known as ‘The Peak of Good Living’ are getting bills equivalent to a mortgage payment. More than $1,800 was…
Revenue Cycle Vendor Notifying 400,000 Patients of Hack
Marianne Kolbasuk McGee reports: A Texas-based healthcare revenue cycle management firm is notifying nearly 400,000 individuals of a hacking incident that it says originated with another third party. The incident is among a growing list of major health data breaches implicating vendors and affecting tens of millions of patients so far this year. Gryphon Healthcare…