NEWARK, N.J. – An indictment was unsealed today charging three Iranian nationals with allegedly orchestrating a scheme to hack into the computer networks of multiple U.S. victims, U.S. Attorney Philip R. Sellinger and National Security Division Assistant Attorney General Matthew Olsen announced today. As alleged in the indictment, from October 2020 through the present, Mansour…
Category: U.S.
A busy morning for those tracking ransomware in the healthcare sector
It is turning out to be a somewhat busy morning here because three new incidents in the healthcare sector reportedly involved ransomware or ransom attempts. DataBreaches was already aware that Medical Associates of the Lehigh Valley notified HHS of a breach impacting 75,268 patients, but their notification letter reveals that this was a ransomware attack….
Ambry Genetics Settles Class Action Lawsuit Over 2020 Data Breach for $12.3M
Genome Web reports: NEW YORK – Ambry Genetics has settled a class action lawsuit over a breach of personal customer data that occurred in 2020. According to the settlement agreement, filed Sept. 9 with the US District Court for the Central District of California, Ambry will pay $12.3 million into a settlement fund. Ambry, which is owned by…
Twitter’s cybersecurity flaws pose national security risk, whistleblower tells Congress
Kelsey Reichmann reports: Cybersecurity failures at Twitter are endangering users’ data and putting national security at risk, the company’s former security chief, Peiter “Mudge” Zatko, told lawmakers at a hearing on Tuesday. Zatko appeared before the Senate Judiciary Committee to testify about allegations he made against the social media giant earlier this year. In reports…
Unpatched and Outdated Medical Devices Provide Cyber Attack Opportunities
FBI Private Industry Notification PIN 20220912-001 TLP: WHITE Summary The FBI has identified an increasing number of vulnerabilities posed by unpatched medical devices that run on outdated software and devices that lack adequate security features. Cyber threat actors exploiting medical device vulnerabilities adversely impact healthcare facilities’ operational functions, patient safety, data confidentiality, and data integrity….
Vasile Mereacre testifies against former Uber security chief in criminal trial
Maria Dinzeo reports: When hackers Vasile Mereacre and Brandon Glover teamed up in 2016 and began scouring Github for exploitable security flaws, they weren’t looking to hack any one company specifically. But Uber’s lax security quickly made the ride-hail giant the pair’s top target. Testifying Monday in the former Uber security head Joe Sullivan’s criminal obstruction…