Category: Commentaries and Analyses

IC3 Warns of Increase in BEC/EAC Schemes

Posted on by Dissent

The Internet Crime Complaint Center (IC3) has issued an alert describing a growing number of scams targeting businesses working with foreign suppliers or businesses that regularly perform wire transfer payments. These sophisticated scams are classified as business email compromise (BEC) or email account compromise (EAC) and use social engineering techniques to defraud businesses. Users and…

Read more

TheDarkOverlord dumps 180,000 patients’ records from 3 hacks

Posted on by Dissent

While thousands of their followers on Twitter seem to be eagerly waiting for TheDarkOverlord (TDO) to dump more tv films or episodes of popular series, TDO went non-fiction this morning, dumping patient/medical records from some of their hacks in the healthcare sector last year.  All told, almost 180,000 patients had their personal information shared with the world. Two of…

Read more

UK: Fertility patient data breach fine would have been much higher under GDPR

Posted on by Dissent

John Bryan uses a recent monetary penalty by the Information Commissioner’s Office to contrast what might happen to fines under the GDPR. Fertility patients being treated at the Lister Hospital, part of the US-based HCA Healthcare group, discovered in April 2015 that transcripts of their confidential patient-doctor conversations were publicly available on the world wide web….

Read more

What a decade of data breach investigations can teach us

Posted on by Dissent

George Nott has a good summary of some of the key findings in Verizon’s newest Data Breach Investigations Report. Some snippets: This year’s report – described by Verizon as an “InfoSec coddiwomple that has now culminated in a decade of nefarious deeds and malicious mayhem” – includes analysis on 42,068 incidents and 1,935 breaches from…

Read more