Duane Morris writes: The Department of Education has issued an electronic notice relating to the updated cybersecurity regulations published by the Federal Trade Commission (FTC). On December 9, 2021, the FTC amended the Safeguards Rule under the Gramm-Leach-Bliley Act (GLBA). This comprehensive amendment updated data security requirements for financial institutions, including all Title IV institutions of higher…
Category: U.S.
Oops! ‘Phishing’ scam cost small Ohio city $219,000, finance director his job
Dean Narciso reports: Phishing-scam training has become a commonplace requirement in many workplaces these days. But not everyone is adhering to its lessons. When emails from a fake paving company landed in the inbox of an accounting assistant working for a small Ohio city last month, the assistant was hooked. The author pretended to be an existing vendor and persuaded…
Weeklong ransomware attack on Oakland government drags on
Da Lin reports: OAKLAND – 10 days after the City of Oakland experienced a ransomware attack, many of its departments remain shut down to the public. Emergency services like police and fire are operational. The lobby at the Oakland Police Department is one of few places still open to the public, but there are signs…
Sweetwater Union High School District still dealing with impact of undefined situation
Kristen Taketa reports: Days after a sweeping systems outage first disrupted student learning and forced teachers to remake their lessons, the Sweetwater Union High School District still hasn’t said what caused the outage or when it expects a fix. […] The outage was discovered Sunday in the district’s Microsoft systems, including Outlook, according to the…
Annual Report to Congress on Breaches of Unsecured Protected Health Information For Calendar Year 2021- HHS OCR
From their report: Summary OCR received 609 notifications of breaches affecting 500 or more individuals, representing a decrease of 7% from the number of reports received in calendar year 2020. These reported breaches affected a total of approximately 37,182,558 individuals. The most commonly reported category of breaches was hacking, and the largest breach of this…
BD issues cybersecurity alert for hacking risk found in Alaris infusion pump software
Andrea Park reports: A vulnerability found in software used to monitor some of BD’s infusion pumps could potentially give hackers access to personal data stored in the system. BD posted a cybersecurity bulletin about the issue Thursday and said it has already notified the FDA and the U.S. Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency…