Commentaries and Analyses – Page 21

HHS’ Office for Civil Rights Settles HIPAA Privacy and Security Rule Investigation with Deer Oaks Behavioral Health for $225k and a Corrective Action Plan

Posted on July 8, 2025 by Dissent

In October 2023, Deer Oaks Behavioral Health in Texas disclosed a ransomware attack that affected 171,871 patients, which they discovered on September 1, 2023. LockBit3.0 claimed responsibility at the time and leaked data from the incident. Today, HHS OCR announced a settlement with Deer Oaks following an expanded investigation that had been opened after an…

Kentfield Hospital victim of cyberattack by World Leaks, patient data involved

Posted on July 5, 2025 by Dissent

While some of us were considering whether Hunters International was in the process of re-branding as World Leaks or not, World Leaks was busy adding a hospital to its leak site. Kentfield Hospital in California is a critical care hospital that specializes in treating patients with complex medical needs who require an extended period of…

No need to hack when it’s leaking: Brandt Kettwick Defense edition

Posted on July 4, 2025July 5, 2025 by Dissent

A recent survey of 500 U.S. law firms by Proton reported that one in five law firms were targeted in a cyberattack in the past year, and 8% of law firms (39% of those who reported a cyberattack) reported losing data or suffering exposure. To make matters even worse, Proton found that 65% weren’t familiar with…

One in Five Law Firms Hit by Cyberattacks Over Past 12 Months

Posted on July 2, 2025 by Dissent

Caroline Byrne writes: One in five U.S. law firms were targeted in a cyberattack in the past year and nearly one in 10 lost data or suffered exposure, according to a comprehensive study by a Swiss tech company. The numbers, which demonstrate the extent to which the industry has become vulnerable to increasingly ruthless cybercriminals,…

Terrible tales of opsec oversights: How cybercrooks get themselves caught

Posted on July 1, 2025 by Dissent

Connor Jones reports: They say that success breeds complacency, and complacency leads to failure. For cybercriminals, taking too many shortcuts when it comes to opsec delivers a little more than that. In these cases, failure might mean the criminal doesn’t get access to the server with the most valuable data to copy, or fails to…

Fact-Checking Claims By Cybernews: The 16 Billion Record Data Breach That Wasn’t

Posted on June 30, 2025June 29, 2025 by Dissent

When Cybernews published an article about a 16 billion credentials leak, some of us strongly criticized the article as irresponsible and misleading journalism. Although some people have tried to suggest that the Cybernews article had some value in highlighting infostealers, the article was so riddled with falsehoods and misleading statements that the confusion and misunderstandings…