Catalin Cimpanu reports: The US Federal Bureau of Investigation sent out on Tuesday a security alert to K12 schools about the increase in ransomware attacks during the coronavirus (COVID-19) pandemic, and especially about ransomware gangs that abuse RDP connections to break into school systems. The alert, called a Private Industry Notification, or PIN, tells schools…
Category: U.S.
Data stolen from Silicon Valley consulting firm offered for sale on hacker forum
Duncan Riley reports: Business consulting firm Frost & Sullivan Inc. has suffered a data breach and data stolen from the firm appeared for sale on a hacker forum. The Mountain View, California-based company has a global presence with 40 offices across six continents. It offers services such as market research, analysis, growth strategy consulting and corporate…
If you needed yet one more example of the risks of PHI in employee email accounts
I’m not sure what it might take to get a real shift in how entities approach security of employee email accounts. Despite known risks of phishing and hacks, a tremendous amount of personally identifiable information (PII) and protected health information (PHI) resides in emails or email attachments in employee accounts. Read the following chronology provided…
Twitter says some business users had their private data exposed
Zack Whittaker reports: Flip the “days since the last Twitter security incident” back to zero. Twitter said Tuesday that it has emailed its business customers, such as those who advertise on the site, to warn that their information may have been compromised in a security lapse. Read more on TechCrunch.
Georgia hospital claims it is investigating medical records theft, suspends employees
Laura Dyrda reports that Landmark Hospital of Athens in Georgia is investigating the theft of medical records and on June 19 suspended three employees who may have been involved. But there’s likely a lot more to this story than employees stealing medical records. Four nurses at that hospital have filed a lawsuit against the hospital accusing…
CHI St. Luke’s Health Memorial Lufkin notifies patients of April security incident
June 22 — CHI St. Luke’s Health-Memorial Lufkin announced today that it has taken action after becoming aware of an incident that took place on April 23, 2020 in which an unapproved third party gained access to patient information. Though we have no evidence to confirm that information was actually viewed or obtained by the…