Pop Quiz: A company misrepresents what its service can do. An innocent consumer, having relied on their claims, signs up for their service but soon discovers that it cannot do what Sales had assured them it would. Upon discovering the misrepresentation within days of subscribing to the service, the consumer immediately tries to cancel the…
Category: Commentaries and Analyses
Judge Advises Dismissal of CommonSpirit Breach Lawsuit
Marianne Kolbasuk McGee reports: A second federal judge has recommended the dismissal of a second proposed class action lawsuit against Catholic hospital chain CommonSpirit over a 2022 cyberattack and data breach that affected nearly 624,000 people. Both judges said the plaintiffs failed to show how they were harmed by the breach. U.S. Magistrate Judge Susan…
Two ransomware attacks in 2023 first disclosed in April — Kisco Senior Living, Blackstone Valley Community Health Care (1)
Two more ransomware incidents that occurred in 2023 were disclosed this week. One was disclosed 10 months after the incident, and the other was disclosed 5 months after the incident. Kisco Senior Living On or about June 15, 2023, BlackByte claimed responsibility for a ransomware attack on Kisco. This week, Kisco filed a notification with…
NIS2 implementation enters the final stretch – six months to deadline
Mark Young, Paul Maynard, and Aleksander Aleksiev of Covington and Burling write: In six months’ time, on 17 October 2024, Member State laws that transpose the EU’s revised Network and Information Systems Directive (“NIS2”) will start to apply. As described in more detail in our earlier blog post (here), NIS2 significantly expands the categories of…
Cybersecurity firm suspects Russia-linked hacking group behind cyberattack on Texas water facility
Tom Olson reports: A hacking group with ties to the Russian government is suspected of carrying out a cyberattack in January that caused a tank at a Texas water facility to overflow, experts from US cybersecurity firm Mandiant said Wednesday. The attack took place in Muleshoe, Texas, and coincided with other towns in north Texas…
Data allegedly from Change Healthcare ransomware attack raises more questions than answers (1)
UPDATE: Sometime earlier today, after my communication with RansomHub, they removed the April 15 update described in the post from their listing. It has now been replaced with a note: Change HealthCare – OPTUM Group – United HealthCare Group – FOR SALE The data in now for sale. Anyone interested in the purchase should contact…