A state audit finds the UW System could be an easy target for cyber attacks or hacks if changes are not made to information technology (IT) security systems. Auditors found risks to accounting, payroll and student data. The UW System has until the end of August to submit plans to the Joint Legislative Audit Committee…
Category: Commentaries and Analyses
Data leaks at 2 Thai banks spark call for legal safeguards
Cyber-security experts have urged the government to quickly strengthen legal safeguards by adding measures to prevent data leaks after the computer systems of two major Thai banks were hacked recently. According to the Bank of Thailand (BOT) on Wednesday, the computer systems of Kasikornbank (Kbank) and Krungthai Bank (KTB) were compromised in the attacks, affecting…
Leaked chats show alleged Russian spy seeking hacking tools
Just catching up with this great report by Ralph Satterson and Matthew Bodner of AP. It provides a great example of how innocent researchers need to remain vigilant about being played by spies. Six years ago, a Russian-speaking cybersecurity researcher received an unsolicited email from Kate S. Milton. Milton claimed to work for the Moscow-based…
Was LabMD Hacked? A Key Issue in Lawsuit Against FTC Lawyers
Craig A. Newman of Patterson Belknap writes: Did LabMD, the now-defunct cancer testing company, expose sensitive patient information with shoddy data security practices as U.S. regulations have charged, or was the company victimized by a private forensics firm extorting it for business – raising the troubling question of whether the entire case against LabMD was…
DPC receives over 1,100 reports of data breaches since start of GDPR rules
Elaine Edwards reports: More than 1,100 reports of data breaches involving people’s personal information have been received by the Data Protection Commission in the two months since a new EU legal regime came into force. The 1,184 reports to the commission mean data breach reports are significantly up on the average of 230 reported each…
BUSTED? A blackhat’s revenge exposes a 2-year old patient data hack that Holland Eye Surgery & Laser Center failed to disclose
A blackhat hacker known as “Lifelock” had claimed Holland Eye Surgery and Laser Center knew about his hack two years ago but failed to disclose it to patients or HHS. A follow-up investigation by DataBreaches.net uncovered evidence supporting his claim. The evidence has been turned over to federal regulators. On June 2, DataBreaches.net reported that…