Alexis Hancock writes: Last year, several parents at EFF enrolled kids into daycare and were instantly told to download an application for managing their children’s care. Daycare and preschool applications frequently include notifications of feedings, diaper changes, pictures, activities, and which guardian picked-up/dropped-off the child—potentially useful features for overcoming separation anxiety of newly enrolled children…
Category: Commentaries and Analyses
Four ransomware attacks on non-U.S. medical entities: Did anyone get notified?
So far, 2022 is not turning out to be a better year than 2021 when it comes to ransomware attacks on the healthcare sector. In its recent report, “The State of Ransomware in Healthcare 2022,” Sophos reports that ransomware attacks in the healthcare sector almost doubled from 2020 to 2021 and that while the ransom…
Voicemail phishing emails steal Microsoft credentials
Jeff Burt reports: Someone is trying to steal people’s Microsoft 365 and Outlook credentials by sending them phishing emails disguised as voicemail notifications. This email campaign was detected in May and is ongoing, according to researchers at Zscaler’s ThreatLabz, and is similar to phishing messages sent a couple of years ago. This latest wave is…
UK: Thousands of service families’ addresses and private information compromised after surge in security breaches at MoD
David Wooding reports: Defence chiefs were told to get a grip yesterday after a surge in security and data breaches. Thousands of service families have had addresses and private information compromised. Figures reveal more than a quarter of all blunders since 2010 took place in the last year — 559 in 2020-21, and 2,000 in…
FTC Weighs In On Data Breach Notification
Liisa M. Thomas, Kari M. Rollins, and Julia K. Kadish of Sheppard, Mullin, Richter & Hampton LLP write: The FTC recently reminded companies that principles of fairness and the likelihood of harm may in some cases prompt breach notification. This requirement might exist even if state breach notice laws have not been triggered. The FTC emphasized at the…
Password recovery from beyond the grave
Richard Speed writes: Every disaster recovery plan needs to contain the “hit by a bus” scenario. But have you ever retrieved a password from beyond the grave? One Register reader has. Welcome to On Call. Today’s tale, told by a reader Regomized as “Mark” takes us back some 15 years when he was handling the…