Jack O’Brien reports on findings from a recent survey of more than 2,870 security professionals from 733 provider organization. Spoiler alert: almost every IT professional agreed with the sentiment that data attackers are outpacing medical enterprises. The total cost of data breaches at healthcare organizations is projected to reach $4 billion by the end of…
Category: Commentaries and Analyses
The First BlueKeep Mass Hacking Is Finally Here—but Don’t Panic
Andy Greenberg reports: When Microsoft revealed last May that millions of Windows devices had a serious hackable flaw known as BlueKeep—one that could enable an automated worm to spread malware from computer to computer—it seemed only a matter of time before someone unleashed a global attack. As predicted, a BlueKeep campaign has finally struck. But so far it’s fallen short…
One year after mandatory breach reporting was enacted in Canada, there are 6 times as many breach reports
One year ago, Canadian businesses became subject to increased data breach notification requirements under PIPEDA (the Personal Information Protection and Electronic Documents Act). Rather than deciding whether to voluntarily disclose or report breaches, they were now required to report all breaches that pose a significant risk of harm to individuals to the Office of the…
Ca: Digital pirates search for prey in Southwestern Ontario
Kathleen Saylors and Galen Simmons report: It may have just been a coincidence. But the revelation by Stratford officials on Sept. 19 that the city paid $75,000 to a hacker to regain access to its computer network following a cyber attack five months earlier was followed by a wave of cyber attacks across Southwestern Ontario. In little…
Hackers can steal the contents of Horde webmail inboxes with one click
Zack Whittaker reports: A security researcher has found several vulnerabilities in the popular open-source Horde web email software that allow hackers to near-invisibly steal the contents of a victim’s inbox. […] Numan Ozdemir disclosed his vulnerabilities to Horde in May. An attacker can scrape and download a victim’s entire inbox by tricking them into clicking a malicious…
Florida Virtual School needs new board, new ethics standards, state education department says
Beth Kassab and Leslie Postal report: The troubled Florida Virtual School should get a new governor-appointed board, new ethics standards for employees and a new inspector general inside the school to oversee internal audits and investigations, according to a report released Friday by the Florida Department of Education. And some of the criticism relates to…