Jeff Francis reports: The last few years have seen ransomware attacks increase in frequency. Cities, businesses, schools, and even health care facilities have been targeted. A ransom in Bitcoin or other cryptocurrency is usually demanded by the hackers, but a new malware is taking a different tack and not asking for crypto at all. The new ransomware, called Black…
Category: Commentaries and Analyses
Mercy Health says nurse was fired for violating privacy of multiple patients not for talking to the media
13ABC reports: Mercy Health is responding to claims made by a fired RN that his termination was retaliation from the hospital after he raised safety concerns with local media. The dispute between a fired Hackley Hospital RN, the Michigan Nurses Association and Mercy Health continues to unfold with the latest response coming from the hospital….
GAO wants four agencies to up their cybersecurity game by this fall
Andrew Eversden reported: Four Cabinet-level agencies are working to finalize risk-management strategies and improve internal cybersecurity coordination by this fall at the behest of the Government Accountability Office, according to new reports released by the watchdog this month. According to the “priority open recommendations” reports, which detail the GAO’s top unimplemented recommendations to an agency,…
Apple says ‘no evidence’ iPhone mail flaw used against customers
Reuters reports: Apple Inc (AAPL.O) said on Thursday it has found “no evidence” a flaw in its email app for iPhones and iPads has been used against customers, and that it believes the flaw does “not pose an immediate risk to our users”. Read more on Reuters.
FTC Settles with Company Over Alleged Deceptive Security Practices
Kari Rollins and Julia Kadish of Sheppard Mullin write: The FTC recently settled with smart lock maker Tapplock, Inc., a Canadian company, over allegations that it deceived consumers with false claims about its product’s security practices. These allegations arose based on vulnerabilities that a security researcher demonstrated – not in the aftermath of a data security breach…
Two iOS zero-days used in limited mail attacks
Dennis Fisher writes: Attackers have been exploiting a pair of dangerous vulnerabilities in the default mail app in Apple’s iOS software since at least January 2018 simply by sending specially formatted emails to target devices. The flaws are unpatched and have been present since iOS 6 was released in 2012. The two vulnerabilities have been…