Antonia Noori Farzan reports: Lawmakers say that last year’s breach of Rhode Island Public Transit Authority computer systems highlighted glaring problems with the way the state responds to the theft of people’s personal data. […] DiPalma’s bill, S 2664, is designed to expand the protections and reporting requirements outlined in the Identity Theft Protection Act of 2015. A companion bill, H…
Category: U.S.
Solar Winds can’t dodge investor suit over massive cyberattack
Stephen Paulsen reports: An Austin-based tech company may be liable to investors after it suffered a major security breach that caused its stock price to plummet, a federal judge ruled. Although that company, SolarWinds, was itself a victim of the breach, the company may had acted recklessly in protecting its software, U.S. District Judge Robert Pitman…
Eight years later, University of Pittsburgh Medical Center breach victims will finally settlement checks
Paula Reed Ward reports: UPMC on Thursday will begin making payments to 66,000 employees who were victims of a 2014 data breach — as part of a settlement approved late last year. Employees were notified via an email on Monday that they will receive a payment notification with a link to claim it electronically. They…
Lapsus$ found a spreadsheet of passwords as they breached Okta, documents show
Zack Whittaker reports on the Sitel compromise after not previously disclosed documents were obtained by independent security researcher Bill Demirkapi: The Lapsus$ hackers used compromised credentials to break into the network of customer service giant Sitel in January, days before subsequently accessing the internal systems of authentication giant Okta, according to documents seen by TechCrunch that…
IL: Blessing details defenses amid increasing health system cyber-attacks
Ryan Hill reports: Hospitals and health systems are finding themselves in the crosshairs of cybercriminals more frequently. According to third party cybersecurity company Black Kite’s 2021 Third Party Breach report, attacks on healthcare companies accounted for nearly a third of attacks in 2021. Blessing Health information security chief Todd Haverstock said he has seen the number…
Data of 820,000 NYC students compromised in hack of online grading system: Education Dept.
Michael Elsen-Rooney reports: Personal data for roughly 820,000 current and former New York City public school students was compromised in the hack of a widely-used online grading and attendance system earlier this year, city Education Department officials said Friday, revealing what could be the largest-ever breach of K-12 student data in the U.S. Furious city…