Mikael Thalen reports: Data from the Epik hack leak reveals subpoenas and preservation requests directed to the company for information about some of its customers, apparently issued in the wake of Jan. 6. Data leaked online from the hack of web hosting company Epik appears to reveal domains of interest to investigations or other court proceedings. Some of…
Category: Commentaries and Analyses
Reports of ePHI breaches are everywhere, but not always were you might look
There are a number of journalists or sites that monitor news and legal notices for disclosures of breaches involving protected health information (PHI). And it’s tempting, when you see that the entity is a business, to just skip on by. But don’t. If a business has a health plan for employees, then they may be…
How ransomware affects stock market share prices: report
Paul Bischoff reports: Comparitech researchers analyzed historical share price data of 24 companies listed on the New York Stock Exchange. For each stock, We pulled the closing share prices ranging from six months prior to a ransomware attack being publicly reported up to three years afterward. We additionally broke down the data by the type…
Tracking stolen crypto is a booming business: How blockchain sleuths recover digital loot
Dalvin Brown reports: Paolo Ardoino was on the front lines of one of the largest cryptocurrency heists of all time. He was flooded with calls and messages in August alerting him to a breach at Poly Network, a platform where users swap tokens among popular cryptocurrencies like Ethereum, Binance and Dogecoin. Hackers had made off…
NZ: Reserve Bank hit with compliance notice from Privacy Commissioner over data breach
Chris Keall reports: The Reserve Bank has suffered the ignominy of being the first organisation to be hit by a compliance notice under the new Privacy Act, which came into force in December last year. Privacy Commissioner John Edwards says an independent review carried out by KPMG after a December 2020 cyber attack “revealed multiple…
EU chief announces cybersecurity law for connected devices
Luca Bertuzzi reports: European Commission President Ursula von der Leyen announced on Wednesday (15 September) a Cyber Resilience Act aimed at setting common cybersecurity standards for connected devices. […] The Commission initiative adds to an existing proposal for a Directive on Security of Network and Information Systems, commonly known as the NIS2 Directive. NIS2 expands…