Protenus has released its Q3 report on breaches involving health data. As explained in their methodology, since its inception in 2016, Protenus reports have not confined themselves to just using data from HHS’s public breach tool (“The Wall of Shame”). Instead, the Protenus reports, using data compiled by DataBreaches.net, include data from incidents also involving…
Category: Commentaries and Analyses
No need for Russia to hack the House of Representatives if the House keeps leaving its doors open.
In early August, “Flash Gordon” (@s7nsins on Twitter) contacted me to say that he discovered a leak involving the House of Representatives. In light of all the talk about Russia trying to hack our elections, I decided that we probably should notify the House right away in case there was any kind of sensitive files…
Virginia Hospital Must Answer for Snooping Employees’ Privacy Breach
From Bloomberg Law: A Virginia health-care system will have to answer claims that it is liable for its employees’ snooping into a patient’s confidential health information. A Virginia trial court shouldn’t have dismissed Lindsey Parker’s complaint alleging Carilion Healthcare Corp. and Carilion Clinic should be held liable for their employees’ wrongdoing, the Virginia Supreme Court…
Litigation Options For Post-Cyberattack ‘Active Defense’
Alexander Berengaut and Tarek Austin of Covington & Burling write: In March 2017, Rep. Tom Graves, R-Ga., introduced a draft bill titled the Active Cyber Defense Certainty Act. The bill would amend the Computer Fraud and Abuse Act to enable victims of cyberattacks to employ “limited defensive measures that exceed the boundaries of one’s network…
Central New York Schools Struggle with Ongoing Cyberattacks
Elizabeth Doran reports: More than 50 Central New York school districts have been hit with nine cyber attacks so far this year, the most recent attack occurring on Oct. 4, U.S. Sen. Chuck Schumer said today. Schumer, speaking at the Central New York Regional Information Center in in DeWitt today, said he is sending a…
Massive data leak affecting Arik Air customers; company slow to respond: Paine
Oladeinde Olawoyin reports: Millions of customers flying Nigeria’s foremost airline, Arik Air, may have had their data leaked as details emerged on Wednesday that the airline’s data were found in exposed and vulnerable Amazon S3 buckets. According to Justin Paine, Head of Trust & Safety at Cloudflare, there is a bucket containing a large number…