After a few years of headlines blaring mega-numbers of records exposed by misconfigured RSYNC backups, we might hope that we would be seeing fewer errors by now. But it seems that RSYNC errors continue at a high rate, exposing massive amounts of data. This month, part of what I did was look at RSYNC errors…
Category: Commentaries and Analyses
Minnesota Blue Cross scrambles to boost cyberdefenses
Joe Carlson reports: Blue Cross Blue Shield of Minnesota is working rapidly to shore up its cybersecurity defenses after an internal whistleblower raised alarm that the state’s largest health insurer had long neglected thousands of important updates. Internal documents show that Minnesota Blue Cross allowed 200,000 vulnerabilities classified as “critical” or “severe” to linger for…
UK: 700,000 Hospital Letters Go Missing Since 2011
Spring Hill Insider reports: Thousands of patients may have suffered delays to treatment after it was revealed that the NHS failed to deliver more than half a million sensitive documents to GPs. Test results from biopsies and patient treatment plans were among the thousands of official records that went missing between 2011 and 2016. Read…
Cheyenne Regional Medical Center notifying patients; employee email accounts had been hacked in March
Cheyenne Regional Medical Center in Wyoming has posted a data security incident notice on its website. According to the notice, on or about April 5, 2019, CRMC became aware of suspicious activity related to certain employee payroll accounts and launched an investigation. They ultimately determined that some CRMC employee accounts were accessed without authorization between…
Biggest data leaks of 2019 that hit Indians
Prabhjote Gill provides a recap of some of the biggest breaches and data leaks affecting Indian residents in 2019. You can read her report on Business Insider. It’s a by-the-numbers type of analysis, but it omits one incident that has numbers higher than one of the ones on their list. The 1to1Help.net leak was not…
Indiana objects to proposed Equifax data breach settlement
According to Bloomberg Law, Indiana has filed an objection to the proposed Equifax data breach settlement. The state wants the language of the settlement changed to exclude further actions by state attorneys general, or failing that, for the court to reject the proposed settlement.