Commentaries and Analyses – Page 205

NYS Comptroller releases more school district IT Audits

Posted on April 11, 2022 by Dissent

Readers may want to read the full LaFargeville report, linked below, because it provides information to school districts about best practices and recommendations for how to accomplish certain security goals. LaFargeville Central School District – Information Technology (Jefferson County) Key Findings District officials did not establish adequate IT controls over physical IT assets and non-student user…

War stirs up cybercrime

Posted on April 10, 2022 by Dissent

(Machine translation of German-language article at zdf.de). Peter Wering reports: ….. Russian groups are currently making little ransom from ransomware attacks…. That is why Russian IT criminals have partially relocated their activities to Ukraine. There they are attacking Ukrainian IT infrastructure on behalf of the Kremlin. But they also use the Internet connections there to…

Greencore case highlights risk of employee data breach claims

Posted on April 10, 2022 by Dissent

The following was reported on March 17 by Claudia Glover: A data breach at UK food manufacturer Greencore could end up proving costly for the company, with a group of current and former employees seeking legal advice on whether to sue the business if their personal information was compromised. Employee data breach claims are becoming…

HHS OCR Issues Annual HIPAA Reports to Congress

Posted on April 9, 2022 by Dissent

Chris Bennington of Epstein Becker Green writes, in part: The HITECH Act requires OCR to issue annual reports to Congress of HIPAA breaches and complaints received by OCR during the calendar year. For 2020, OCR reported that it received 656 notifications of breaches affecting 500 or more individuals, 66,509 notifications of breaches affecting fewer than…

Lapsus$, Okta and the Health Sector

Posted on April 8, 2022 by Dissent

A whitepaper from the HHS Cybersecurity Program. April 7, 2022 Available online at https://www.hhs.gov/sites/default/files/lapsus-okta-health-sector-tlpwhite.pdf (26 pp, pdf)

Details on the Weatherford ISD data breach

Posted on April 8, 2022 by Dissent

DataBreaches.net has received the following statement from Charlotte LaGrone, Executive Director of Communications for Weatherford ISD, concerning the breach DataBreaches.net reported yesterday: Weatherford ISD Statement on Data Breach The confidentiality, privacy, and security of information in our care is one of our highest priorities. Despite multiple layers of processes and procedures to prevent a data…