Alex Scroxton reports: … According to [the founding head of the National Cyber Security Centre (NCSC)], the ransomware problem is now being exacerbated by victims paying ransoms to their extortionists and then claiming back this sum on their insurance. He described this as an “incentive” that encourages victims to pay to solve their problem quickly. He…
Category: Commentaries and Analyses
New York State Comptroller Thomas P. DiNapoli Releases School District Audit
Lyncourt Union Free School District – Information Technology (Onondaga County) District officials did not adequately manage network user accounts or develop and adopt a written disaster recovery plan. As a result, the district has an increased risk that it could lose important data and suffer serious interruption in operations. District officials should have disabled 17…
When to Report a Breach: Consideration of Encryption States
Matt Fisher of Carium writes: Data breaches grab headlines on a daily basis and arise from a number of different scenarios. However, one question that is not necessarily examined closely (at least in news articles), is whether encryption was in place and why the encryption did not prevent the breach. That rhetorical question does not…
North Korea Is Using Cyberattacks To Finance Updates To Nuclear Program, UN Experts Say
Edith M. Lederer of AP reports: North Korea has modernized its nuclear weapons and ballistic missiles by flaunting United Nations sanctions, using cyberattacks to help finance its programs and continuing to seek material and technology overseas for its arsenal, U.N. experts said. […] The panel said its investigations found that North Korean-linked cyber actors continued…
11th Circuit’s strict new rule for data breach standing will figure in Equifax appeal
Alison Frankel reports: Shiyang Huang is not a lawyer. Nor is he a professional objector who makes a living from demanding payments to drop filing vexatious objections to class action appeals. By his account, he’s just a pro se litigant from Topeka who doesn’t think federal courts should be called upon to adjudicate claims by…
RBNZ says partner Accellion kept it in the dark about data breach
Chris Keall reports: The Reserve Bank was kept in the dark for a crucial five days about a December data breach, Governor Adrian Orr says – contradicting its technology partner’s version of events. The incident – which saw sensitive data stolen – involved a file-sharing service run by US company Accellion. Read more on NZ…