Tom Bristow reports: The region’s hospitals have dismissed staff and said they are tightening up how they look after patients records in the wake of the breaches. More than 650 data protection incidents were reported in the region’s NHS trusts last year, according to data obtained by this newspaper through the Freedom of Information Act….
Category: Commentaries and Analyses
Convicted Russian hacker cashes in on fame with new book, Putin souvenirs
Amy Kellogg reports: A convicted Belarussian cybercriminal who was part of the biggest data theft in U.S. history said it’s much easier to hack into government computers than it is to break into big banks and credit card company servers. Sergey Pavlovich, 34, also boasted that Russia had some of the best hackers in the…
Veterans group sues Pentagon after personal military records exposed
Vera Bergengruen reports: A veterans organization is suing the Pentagon for exposing private details about troops’ military service on “a truly massive scale” due to lax security on one of its websites. […] The Servicemembers Civil Relief Act website, which according to the Pentagon receives more than 2.3 billion searches a year, is mean to…
How to report a data breach under the GDPR
Conor Donnelly writes: One of the main changes under the GDPR is that all organisations must report a personal data breach to their supervisory authority within 72 hours, and in some cases to the individuals affected. What is a personal data breach? A personal data breach refers to a breach of security that can lead…
HBO Hackers Dump Game of Throne Scripts, Another Episode, and Confidential Corporate Files
“If history repeats itself, HBO may NEVER be the same Again. Winter Really is here” HB-Old is Dying……. — From an Email from the HBO Hackers This evening, the hackers who grabbed headlines last week by announcing their hack of HBO, released more files and more evidence of how thoroughly they may have ransacked some…
Department of Justice Releases Guidance for Vulnerability Disclosure Programs
Jennifer Martin, Ashden Fein and Weiss Nusraty write: Last week, the U.S. Department of Justice (“DOJ”) released a voluntary frameworkfor organizations to use in the development of a formal program to receive reports of network, software, and system vulnerabilities, and to disclose vulnerabilities identified in other organizations’ environments. This framework provides private entities a series…