Brian Krebs reports: A 22-year-old New Jersey man has been sentenced to more than 13 years in prison for participating in a firebombing and a shooting at homes in Pennsylvania last year. Patrick McGovern-Allen was the subject of a Sept. 4, 2022 story here about the emergence of “violence-as-a-service” offerings, where random people from the Internet…
Category: U.S.
PA: Hopewell Area School District says network disruption was caused by ransomware attack
Kalea Gunderson reports: The Hopewell Area School District was the target of a “sophisticated ransomware attack.” How it happened remains under investigation, but the key concern in any cyberattack is data In a statement, Superintendent Dr. Jeff Beltz said the district has been working with outside specialists to investigate the cause of the attack and…
‘Data security event’ in city’s email system may have exposed health information, Philly officials say
Nick Vadala reports: A potential data breach in the City of Philadelphia’s email system earlier this year may have exposed protected health information for an unspecified number of people. Read more at The Philadelphia Inquirer. It is not clear from what the city has disclosed why it took them almost 5 months from initial discovery…
D.C. Board of Elections revises its estimate of data breach — could be entire voter roll
The D.C. Board of Elections appears to have revised its estimate of how much data was accessible to a threat actor who listed it for sale on a dark web site. The listing had claimed to have 600k lines of voter registration records from the D.C. Board of Elections, but a preliminary statement by the…
More lawsuits filed against Gaston College over data breach
Kara Fohner reports: Two more lawsuits filed against Gaston College allege that a data breach earlier this year exposed the personal information of more than 100,000 people. The lawsuits, filed by Ludenia Archie and Shaquasia Eppes, both former students, state that in the Feb. 21 cybersecurity incident, in which a hacker accessed sensitive files and…
HIPAA requires employers to sanction employees who violate HIPAA. Did you know that?
From HHS’s October cybersecurity newsletter: Last year, the Department of Health and Human Services’ (HHS) Health Sector Cybersecurity Coordination Center (HC3) released a threat brief on the different types of social engineering1 that hackers use to gain access to healthcare information systems and data.2 The threat brief recommended several protective measures to combat social engineering, one of…