Jessica Bartlett reports: A crippling cyber attack at the state’s second-largest insurer not only interrupted operations for months but also pummeled the insurer’s financials. For the six months ending in June, Point32Health reported a $102.7 million operating loss on $4.8 billion in revenue. Those results compare to a $25.8 million operating loss on $4.9 billion…
Category: Commentaries and Analyses
Haggling With Hackers: Surprising Lessons From 50 Negotiations With Ransomware Gangs
Christopher Janaro writes: The prevailing wisdom from cybersecurity experts is that trying to negotiate with ransomware hackers is a bad idea, but on December 30, 2020, one victim broke the rules and gave it a shot. “Help?” they typed into one of the compromised computers. “Hello,” one of the hackers replied. “Are you ready to…
Health Data and Investigations: Between a Rock and a Hard Place
Matt Fisher writes: Demands for medical records can stem from a variety of investigations, which can involve a myriad of sources. The most recent example driving headlines is an investigation involving Vanderbilt University Medical Center (“VUMC”). VUMC disclosed records concerning treatment of transgender patients to the Tennessee Attorney General. According to the Attorney General, an investigation of…
Cuba Ransomware Deploys New Tools: Targets Critical Infrastructure Sector in the U.S. and IT Integrator in Latin America
Blackberry’s Research and Intelligence Team writes: BlackBerry has discovered and documented new tools used by the Cuba ransomware threat group. Cuba ransomware is currently into the fourth year of its operation and shows no sign of slowing down. In the first half of 2023 alone, the operators behind Cuba ransomware were the perpetrators of several high-profile…
Ransomware Diaries: Volume 3 – LockBit’s Secrets
Add this to your must-read list for the week (after you finish the Georgia indictment, of course, although to be honest, the ransomware diaries entry is more fascinating). Jon DiMaggio of Analyst1 writes: In this volume of the Ransomware Diaries, I will share interesting, previously unknown details of the LockBit ransomware operation that LockBit has…
Hospital Mergers Double the Risk of a Data Breach, Study Shows
Joseph J. Lazzarotti of JacksonLewis writes: The healthcare sector is a prime target for data breaches. According to a summary by the HIPAA Journal, 32% of all data breaches between 2015 and 2022 were in the healthcare sector, “almost double the number recorded in the financial and manufacturing sectors.” Industry analysts cite to many reasons for this, including…