Commentaries and Analyses – Page 195

Greencore case highlights risk of employee data breach claims

Posted on April 10, 2022 by Dissent

The following was reported on March 17 by Claudia Glover: A data breach at UK food manufacturer Greencore could end up proving costly for the company, with a group of current and former employees seeking legal advice on whether to sue the business if their personal information was compromised. Employee data breach claims are becoming…

HHS OCR Issues Annual HIPAA Reports to Congress

Posted on April 9, 2022 by Dissent

Chris Bennington of Epstein Becker Green writes, in part: The HITECH Act requires OCR to issue annual reports to Congress of HIPAA breaches and complaints received by OCR during the calendar year. For 2020, OCR reported that it received 656 notifications of breaches affecting 500 or more individuals, 66,509 notifications of breaches affecting fewer than…

Lapsus$, Okta and the Health Sector

Posted on April 8, 2022 by Dissent

A whitepaper from the HHS Cybersecurity Program. April 7, 2022 Available online at https://www.hhs.gov/sites/default/files/lapsus-okta-health-sector-tlpwhite.pdf (26 pp, pdf)

Details on the Weatherford ISD data breach

Posted on April 8, 2022 by Dissent

DataBreaches.net has received the following statement from Charlotte LaGrone, Executive Director of Communications for Weatherford ISD, concerning the breach DataBreaches.net reported yesterday: Weatherford ISD Statement on Data Breach The confidentiality, privacy, and security of information in our care is one of our highest priorities. Despite multiple layers of processes and procedures to prevent a data…

East Tennessee Children’s Hospital updates information on ransomware incident

Posted on April 8, 2022 by Dissent

On March 15, this site noted that the East Tennessee Children’s Hospital had posted a notice about an IT security incident. At the time, they did not identify the incident as a ransomware incident. DataBreaches.net subsequently found some explanation for that notice — a listing on a Russian-language forum offering data from ETCH with numerous…

Microsoft on disrupting cyberattacks targeting Ukraine; Facebook on countering Ghostwriter’s attempts

Posted on April 8, 2022 by Dissent

Tom Burt , the Corporate Vice President, Customer Security & Trust at Microsoft writes: Today, we’re sharing more about cyberattacks we’ve seen from a Russian nation-state actor targeting Ukraine and steps we’ve taken to disrupt it. We recently observed attacks targeting Ukrainian entities from Strontium, a Russian GRU-connected actor we have tracked for years. This…