After providing some history the LabMD enforcement action by FTC, and the former’s appeal to the 11th Circuit, Tom Kulik of Scheef & Stone, LLP outlines what he considers the three biggest data security takeaways from the case. You can read his article on Above the Law.
Category: U.S.
Still sending data via unencrypted thumb drives in the mail? It will cost you.
Weibrecht Law in New Hampshire recently submitted a notification to their state with this explanation of their breach: On or about Monday September 10th, our office sent an unencrypted electronic copy (“thumb drive”) of a client file via US Postal Service. The envelope that the thumb drive was sent in was received by the recipient,…
Anthem Pays OCR $16 Million in Record HIPAA Settlement Following Largest U.S. Health Data Breach in History
From HHS/OCR, this record-setting announcement: Anthem, Inc. has agreed to pay $16 million to the U.S. Department of Health and Human Services, Office for Civil Rights (OCR) and take substantial corrective action to settle potential violations of the Health Insurance Portability and Accountability Act (HIPAA) Privacy and Security Rules after a series of cyberattacks led…
Latvian National Sentenced To Prison For “Scareware” Hacking Scheme That Targeted Minneapolis Star Tribune Website
There’s an update to a case previously reported in February that I missed last month. From the U.S. Attorney’s Office, District of Minnesota: A Latvian man was sentenced today in Minneapolis for participating in a lucrative “scareware” hacking scheme that targeted visitors to the Minneapolis Star Tribune’s website. Assistant Attorney General Brian A. Benczkowski of…
Hackers hit Onslow County utility with ransomware attack
WNCT reports: The Onslow Water and Sewer Authority‘s internal computer system, including servers and personal computers, was hit by a ransomware attack Saturday. […] ONWASA began experiencing persistent virus attacks from a polymorphic malware known as EMOTET on October 4…….. At what ONWASA officials said may have been a timed event, the malware launched a…
Henderson ISD falls victim to fraud in a business email compromise scheme
David Chenault reports: Financial scammers stole more than $600,000 from Henderson ISD through a sophisticated, yet common, fraud scheme. According to HISD’s financial records, on Sept. 26, the district initiated a $609,615.24 direct electronic bank payment (known as an Automated Clearing House or ACH) to RPR Construction Company Inc. The firm is overseeing the construction…