Security Magazine reports: Eleven new U.S. school districts (comprised of 226 schools) have been compromised by ransomware since late October, says a report by Armor. Since January 2019 to date, Armor has identified a total of 72 school districts and/or individual educational institutions that have publicly reported being a victim of ransomware. These attacks have potentially…
Category: Commentaries and Analyses
Unsecured backup devices continue to be a hot mess
After a few years of headlines blaring mega-numbers of records exposed by misconfigured RSYNC backups, we might hope that we would be seeing fewer errors by now. But it seems that RSYNC errors continue at a high rate, exposing massive amounts of data. This month, part of what I did was look at RSYNC errors…
Minnesota Blue Cross scrambles to boost cyberdefenses
Joe Carlson reports: Blue Cross Blue Shield of Minnesota is working rapidly to shore up its cybersecurity defenses after an internal whistleblower raised alarm that the state’s largest health insurer had long neglected thousands of important updates. Internal documents show that Minnesota Blue Cross allowed 200,000 vulnerabilities classified as “critical” or “severe” to linger for…
UK: 700,000 Hospital Letters Go Missing Since 2011
Spring Hill Insider reports: Thousands of patients may have suffered delays to treatment after it was revealed that the NHS failed to deliver more than half a million sensitive documents to GPs. Test results from biopsies and patient treatment plans were among the thousands of official records that went missing between 2011 and 2016. Read…
Cheyenne Regional Medical Center notifying patients; employee email accounts had been hacked in March
Cheyenne Regional Medical Center in Wyoming has posted a data security incident notice on its website. According to the notice, on or about April 5, 2019, CRMC became aware of suspicious activity related to certain employee payroll accounts and launched an investigation. They ultimately determined that some CRMC employee accounts were accessed without authorization between…
Biggest data leaks of 2019 that hit Indians
Prabhjote Gill provides a recap of some of the biggest breaches and data leaks affecting Indian residents in 2019. You can read her report on Business Insider. It’s a by-the-numbers type of analysis, but it omits one incident that has numbers higher than one of the ones on their list. The 1to1Help.net leak was not…