A joint letter addressed to the Law Society and signed by the U.K.’s Information Commissioner’s Office and NCSC is causing waves in cybersecurity circles. The following is the press release accompanying it: July 8 – Solicitors are today being asked to play their part in keeping the UK safe online by helping to tackle the…
Category: Commentaries and Analyses
Ca: How the court bolstered an insurer’s exclusion for privacy breach
David Gambrill reports: Acting recklessly in breaching the confidential medical files of patients effectively falls within a hospital insurer’s commercial policy exclusion for committing an ‘intentional act,’ Ontario’s top court has ruled. The Ontario Court of Appeal found a hospital insurer, the Healthcare Insurance Reciprocal of Canada, does not have a duty to defend a…
A community health provider in Vermont and an addiction rehab organization in Pennsylvania fall prey to BlackByte
Two medical entities appear to have recently fallen prey to attacks using BlackByte’s ransomware, and both entities have now had some of their data leaked on BlackByte’s dedicated leak site. Lamoille Health Partners Lamoille Health Partners in Vermont serves the Lamoille County community’s healthcare needs. As such, they provide a range of comprehensive services that…
SiegedSec continues #OpJane efforts
On June 26, DataBreaches reported that hacktivists calling themselves SiegedSec claimed to have attacked government servers in Arkansas and Kentucky to protest those states’ abortion bans. As noted at the time, the “attacks” seemed mostly symbolic, as neither server contained any information related to the abortion issue or laws and was all publicly available. Yesterday,…
Pentester says he broke into datacenter via hidden route running behind toilets
Dan Robinson reports: Many security breaches involve leaks, but not perhaps in the same way as one revealed by noted security consultant Andrew Tierney, who managed to gain unauthorized access to a datacenter via what he delightfully terms the “piss corridor.” Tierney, who works as a consultant for security services outfit Pen Test Partners, revealed in…
Chinese hackers targeting Russian government, telecoms: report
Jonathan Greig reports: Chinese hacking groups are targeting the Russian government and organizations in the telecommunications industry, according to a new report from cybersecurity company SentinelOne. The report found that there has been a noticeable increase in Russian targeting by suspected Chinese threat actors. Tom Hegel, senior threat researcher at SentinelOne, attributed the targeting to state-sponsored espionage…