Monongalia Health System in West Virginia issued a press release this week about a data breach that impacted patients, employees, and contractors. It was the second incident reported by them in a one-year period. But was this incident unrelated to the first incident or related to it? It’s not yet clear, let’s back up to…
Category: Commentaries and Analyses
Breach Notification: Poor Transparency Complicates Response
Anyone trying to make sense of data breach trends faces a transparency challenge. Too often, a lack of detail undercuts consumers’ ability to assess their identity theft risk and businesses’ ability to block emerging attacks or ensure that their supply chains remain secure. Amen to that! Read Mathew J. Schwartz’s article on BankInfoSecurity.
HC3: Destructive Malware Targeting Organizations in Ukraine
HHS Cybersecurity Program has issued another alert and whitepaper report (202202280900): Executive Summary Leading up to Russia’s unprovoked attack against Ukraine, threat actors deployed destructive malware against organizations in Ukraine to destroy computer systems and render them inoperable. Destructive malware can present a direct threat to an organization’s daily operations, impacting the availability of critical…
Preparing for Cyberattacks and Limiting Liability
Lani M. Duffy and Richard A. Walawender of Miller Canfield write: The U.S. government and military experts have been warning U.S. companies that Russia may launch significant cyberattacks against critical infrastructure, financial institutions and businesses in retaliation for the sanctions imposed against Russia. Last week, the Cybersecurity & Infrastructure Security Agency (established in 2018 under…
Airline Sues to Stop Popular Web-Scraping Service–American Airlines v. The Points Guy
Kieran McCarthy writes: Those interested in web scraping legal issues had high hopes that the Supreme Court’s opinion in Van Buren v. United States last summer would provide clear guidelines on which types of online data access were permissible and which were not. And while most would agree that the Supreme Court avoided a worst-case scenario with its…
ContiLeaks providing new insights and evidence against Conti
It almost felt like Christmas came early in a winter of despair. As noted yesterday, a Conti member who appears furious with Conti for its statement supporting Russia started dumping internal records from Conti with a statement ending, “Glory to Ukraine!” The leak was first reported on Twitter by VX-Underground: Conti ransomware group previously put…