Another hospital has been hit with ransomware. The following is a Google translation of a report The CHwapi, hospital center of Picardy Wallonia in Tournai, was the victim of a computer attack on Sunday evening. All non-urgent operations were canceled on Monday. No ransom demand has been demanded, according to management. The CHwapi was the…
Category: Commentaries and Analyses
Cybercriminals are Bypassing Multi-factor Authentication to Access Organisation’s Cloud Services
Graham Cluley writes: The US Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning to companies to better protect their cloud-based accounts after several recent successful attacks. According to an advisory published by CISA, an increasing number of attacks have succeeded as more employees have begun to work remotely with a variety…
Polish DPA fines Virgin Mobile Polska €460,000: Incidental safeguards review is not regular testing of technical measures
The President of the Personal Data Protection Office (UODO) imposed a fine of PLN 1.9 million (EUR 460,000) on Virgin Mobile Polska for the lack of implemented appropriate technical and organisational measures to ensure the security of the processed data. UODO stated that the company infringed the principles of data confidentiality and accountability specified in…
Guangdong authority orders Tencent, Xpeng, other tech firms to amend apps over cybersecurity concerns
Iris Deng reports: The communications authority in southern Guangdong province has cracked down on the operation of 209 apps, including seven run by internet giant Tencent Holdings and one from electric car maker Xpeng, over privacy and security concerns amid China’s renewed drive against misuse of consumer data. The Guangdong Communications Administration in November and…
Clark Hill Must Produce Cyberattack Report In Malpractice Suit
This looks to be another case where a court shoots downs claims of attorney-client privilege for a breach-related report. And once again, it seems to be a situation in which the firm could not show that the breach litigation was the sole purpose of the report or with whom it was shared. Read about this…
SolarWinds Says It Has Found Source of Massive Cyberattack
M. Corey Goldman reports: Security software provider SolarWinds (SWI) – Get Report revealed Tuesday that it has found the source of a highly sophisticated malicious code injection that it believes was used by the perpetrators of the recent cyberattack on the company and its clients, including federal government agencies. In a regulatory filing, SolarWinds said that it was…