Commentaries and Analyses – Page 612

Plan Ahead, Stay On Top of Government and Tech Changes, and Be Ready to Call the FBI: Key Lessons from the PHI Protection Network Conference

Posted on March 22, 2016 by Dissent

Abraham J. Rein of Post & Schell has a nice recap of some of the recurring themes at last week’s PHI Protection Network conference in Philadelphia. Here’s a snippet of his post from the section about about law enforcement’s message to attendees: …. Michael Stawasz, Deputy Chief of the U.S. Department of Justice Computer Crime and…

Featured Story: Henry Ford Healthcare System: creating a culture of privacy

Posted on March 21, 2016 by Dissent

Over the past decade of reporting on healthcare sector breaches, I can probably count on one hand the number of entities who have impressed me that they really “get” that responding to a privacy breach is not primarily about data or statutory notifications. It’s about addressing any distrust or anxiety patients may feel about you protecting their confidentiality, because…

IG: Poor firewall maintenance leaves USPS exposed

Posted on March 18, 2016 by Dissent

Aaron Boyd reports: The Postal Service inspector general has been dinging the agency on its cybersecurity posture recently, with the most recent report examining deficiencies in the firewalls protecting mail processing systems. The report — which was finalized on Jan. 26 but just released in redacted form — notes USPS maintains 285 firewalls nationwide. The IG sampled…

Malicious scripts spammed out to infect computers with ransomware

Posted on March 18, 2016 by Dissent

Graham Cluley writes: Although over 100,000 new malware variants may be discovered every day by security researchers, that doesn’t mean that the criminals behind the attacks need to be equally inventive in their methods to infect users. In fact, truth be told, the methods used to compromise users’ computers are often close to the same…

Sixth Circuit Rejects False Claims Act Claim Based on Health Data Breach

Posted on March 16, 2016 by Dissent

Evan Panich of McDermott Will & Emery writes: On March 7, 2016, the U.S. Court of Appeals for the Sixth Circuit decided United States ex rel. Sheldon v. Kettering Health Network, affirming a district court’s dismissal of a lawsuit alleging violations of the False Claims Act (FCA) relating to an alleged data breach. The relator alleged…

GhostShell, On the Record – If You Knew Then What You Know Now….

Posted on March 15, 2016 by Dissent

This post is part of an extended interview conducted by DataBreaches.net and CyberWarNews.info with the hacker formerly known as “GhostShell.” We asked GhostShell to look back and tell us if he would do anything differently. Here was part of his answer: if I could invent the time machine I would go back, never join Anonymous,…