Caleb Skeath and Inside Privacy write: Last week, the U.S. Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (“CISA”) released a set of cyber readiness recommendations for small businesses. The recommendations, which CISA developed in collaboration with small businesses and state and local governments, are intended to assist smaller organizations in implementing organizational cybersecurity practices. While…
Category: Commentaries and Analyses
Data leak of police records possible: Kerala Opposition leaders caution state government
Express News Service reports: THIRUVANANTHAPURAM: The state government’s move to allow the IT division of Uralungal Labour Contract Cooperative Society (ULCCS) access to sensitive police data, as part of a passport verification project, came in for heavy flak from the Opposition in the Assembly on Wednesday. Alleging that the move would pave way for largescale…
Exclusive: More than 90,000 patient billing files from an alcohol and drug addiction treatment network exposed online
Update: On December 2, Sunshine Behavioral Health reported this incident to HHS as impacting 3500 patients. They also ticked the box for Business Associate. Update 2: On January 23, 2020, ID Experts submitted a copy of their notification to patients to the Vermont Attorney General’s Office. Another day, another leak. In this case, an error…
Indian education institutions hit hard by hackers: Report
IANS reports: Education domain is one of the most “at-risk” industries in India, with the sector accounting for more than 30 per cent of cyber threats targeting enterprises in the country between July and September 2019, a new report from Seqrite, the enterprise arm of IT security firm Quick Heal Technologies, said on Wednesday. Other…
Utah Company Settles FTC Allegations it Failed to Safeguard Consumer Data
The FTC announced a settlement in a data security enforcement action against InfoTrax Systems, L.C. and its former CEO, Mark Rawlins. Here is their press release, below, followed by InfoTrax’s comments on the settlement: A Utah-based technology company has agreed to implement a comprehensive data security program to settle Federal Trade Commission allegations that the…
Gaping ‘hole’ in Qualcomm’s Secure World mobile vault leaked sensitive data
Charlie Osborne reports: A severe “hole” in the Qualcomm Secure World virtual processor, now patched, has been disclosed by researchers. According to cybersecurity researchers from Check Point, the Secure World safe compartment — used to house sensitive data in our mobile devices — could be exploited to leak financial information. Read more on ZDNet.