Add this to the list of things I missed last week. Nathan Salminen and Ryan Campbell write: Last week, the National Institute of Standards and Technology (NIST) released a “quick-start guide” to facilitate due diligence assessments from a cyber supply chain risk management perspective. The guide helps companies navigate due diligence under the agency’s Special…
Category: Commentaries and Analyses
Remarks at a UN Security Council Briefing on Ransomware Attacks against Hospitals and Other Healthcare Facilities and Services
Anne Neuberger Deputy National Security Advisor of the United States New York, New York November 8, 2024 AS DELIVERED Thank you, Mr. President. Good morning. My name is Anne Neuberger and since 2021, I have had the privilege of coordinating the United States’ national security policy on cyber and emerging technologies. I am honored to…
Still in the dark: A “500 marker” is updated, but too many still aren’t. Is HHS doing anything about this??
In March 2024, LockBit3.0 added Redwood Coast Regional Center (RCRC) to its leak site. On May 3, RCRC notified HHS of the March 6 incident, reporting that 500 patients had been affected. RCRC only recently updated that report to indicate that 24,937 patients were affected. On or about November 5, they began mailing out letters…
Professional Probation Services leak exposed almost half a million probationers’ personal info
If you say you always do right, then you should do right, right? Ouch. Over on infosec.exchange, @Jayeltee recently wrote: Professional Probation Services ( www.ppsfamily.com ) exposes almost 500,000 US probationers private data publicly, SSNs included, and when I ask them for their intentions regarding disclosure, they go into hiding mode, removing their management and…
Fourth Circuit hears oral arguments about the sentencing of Conor Brian Fitzpatrick (aka “Pompompurin”)
On October 29, the Fourth Circuit Court of Appeals heard oral arguments in the government’s appeal of Conor Brian Fitzpatrick’s sentence. At issue was whether District Court Judge Leonie M. Brinkema had abused her discretion in sentencing Fitzpatrick and whether her sentence was “substantively unreasonable.” Judges have discretion in sentencing and courts are often reluctant…
FBI has conducted more than 30 disruption operations in 2024
Christian Vasquez reports: The FBI is seeing progress in the fight against ransomware gangs after conducting more than 30 disruption operations this year in which officials targeted the infrastructure used by those groups, one of the bureau’s top cybersecurity officials said Wednesday. Cynthia Kaiser, deputy assistant director of the FBI’s cyber division, said during CyberScoop’s…