King & Spalding write: On May 25, 2016, the House Energy and Commerce Subcommittee on Health held a hearing to examine the Department of Health and Human Services’ (“HHS”) cybersecurity responsibilities. The hearing focused on legislation that would create a new office within HHS, the Office of the Chief Information Security Officer (“CISO”), consolidating information…
Category: U.S.
Woman charged with altering and stealing computer files from Cree
WRAL reports: A Cary woman has been charged with illegally accessing and altering computer files at Durham-based LED manufacturer Cree Inc., according to an arrest warrant. Huili Cui, 50, of 521 Denhoff Drive, is charged with felony accessing computers and larceny by employee. She was initially held in the Durham County jail under a $1…
Two Men Plead Guilty In Hacking, Spamming Scheme That Stole Personal Information From Millions Of Americans
June 2 – Two men today admitted their roles in a computer hacking and identity theft scheme that hijacked customer email accounts, stole personally identifiable information (PII) from millions of people, and generated more than $2 million in illegal profits, U.S. Attorney Paul J. Fishman announced. Tomasz Chmielarz, 33, of Rutherford, New Jersey, pleaded guilty…
National Network of Abortion Funds reports hack
I suppose some would consider this hacktivism… The National Network of Abortion Funds reports that its Bowl-A-Thon site was attacked on or about April 7. Fake comments were posted, fake donations were submitted, and fake donation activity threatened to disrupt the functionality of the site. Some registered users received offensive emails. Forensic investigation determined that as part of…
Defunct undergrad law society site exposed hundreds of SSNs
Penn State University recently reported an incident to the New Hampshire Attorney General’s Office that involves a now-defunct club. According to their report, the university was notified on April 13 that a historical document uploaded to the Undergraduate Law Society‘s web site was a spreadsheet that contained two fields – SSN and DOB – that…
Low-tech break-in results in breach notification in Phoenix
The administrative offices of Mountain Park Health Center in Phoenix was burglarized on March 22nd. Burglars rifled through the contents of locked file cabinets containing personnel information, but none of the contents were stolen. The kinds of employee information in the files included names, addresses, telephone numbers, SSN, dates of birth, and limited financial information. Through…