Commentaries and Analyses – Page 271

California Breach Regulations Applicable to Health Care Facilities Align “Breach” Definition with HIPAA, Expand Reporting Obligations, and Clarify Penalty Structure

Posted on July 23, 2021 by Dissent

Jennifer Hennessy, Chloe Talbert, and Jennifer Urban of Foley Lardner write: California clinics, health facilities, home health agencies, and licensed hospices required to report breaches to the California Department of Public Health (CDPH) under California’s Health and Safety Code Section 1280.15 (Section 1280.15) are now subject to a new set of regulations. Section 1280.15, which has been in…

Kaseya obtains universal decryptor for REvil ransomware victims

Posted on July 22, 2021 by Dissent

Lawrence Abrams reports: … Today, Kaseya has stated that they received a universal decryptor for the ransomware attack from a “trusted third party” and are now distributing it to affected customers. “We can confirm we obtained a decryptor from a trusted third party but can’t share anymore about the source,” Kaseya’s SVP Corporate Marketing Dana…

China says Microsoft hacking accusations fabricated by US and allies

Posted on July 20, 2021 by Dissent

From the of-course-they-would dept., BBC reports: China has denied allegations that it carried out a major cyber-attack against tech giant Microsoft. The US and other Western countries on Monday accused China of hacking Microsoft Exchange – a popular email platform used by companies worldwide. They said it was part of a broader pattern of “reckless” behaviour…

How many leaks have there been of Mexico’s voter database?

Posted on July 19, 2021 by Dissent

A recent listing on a popular forum claimed to be offering the entire Mexican voter database for 2021 — 91 million records. The data was formatted with the following fields: “CVE”,,”NOMBRE”,”PATERNO”,”MATERNO”,”FECNAC”,”SEXO”, “CALLE”,”INT”,”EXT”,”COLONIA”,”CP”,”E”,”D”,”M”,”S”,”L”, “MZA”,”CONSEC”,”CRED”,”FOLIO”,”NAC”,”CURP” In response to the listing, Alon Gal (@UndertheBreach) commented on Twitter that this was the second breach involving Mexico’s Instituto Nacional Electoral (INE)….

Jm: Staff, patients concerned about data breach at university hospital

Posted on July 18, 2021 by Dissent

Jovan Johnson reports: Loose network and cybersecurity with the problem-plagued Hospital Information Management System (HIMS) that’s gobbling up millions in cost overruns has exposed to hackers thousands of patient data at the University Hospital of the West Indies (UHWI), a Sunday Gleaner investigation has found. Although Advanced Integrated Systems (AIS), which is implementing the project that’s four…

State audits of school district IT reveal why k-12 districts are sitting ducks for threat actors

Posted on July 17, 2021 by Dissent

On July 15, New York State Comptroller Thomas P. DiNapoli released the following school district audits. Clicking on the links will take you to the fuller reports, but even then, some things were so bad, it seems, that findings were told to the districts, but not put in writing in public reports that threat actors…