The operative word is “outdated.” Uzair Amir reports: PakWheels, a famous automotive classified website in Pakistan has revealed that their server was breached by an unknown third party exposing personal data of registered users. In an email sent to users on 26th December, the site explained that hackers were able to conduct this breach by exploiting a known vulnerability…
Category: Hack
Pager system hack resulted in HIPAA breach for Providence Health & Services
A while back, I was shown some live-streaming of a pager system that was being used in what appeared to be a hospital environment, as the pages included room numbers, patient medication information, etc. Unable to figure out what entity or organization was responsible for the system and the exposure as pages flew by rapidly,…
GRIZZLY STEPPE – Russian Malicious Cyber Activity
Joint Analysis Report Reference Number: JAR-16-20296 December 29, 2016 Summary This Joint Analysis Report (JAR) is the result of analytic efforts between the Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI). This document provides technical details regarding the tools and infrastructure used by the Russian civilian and military intelligence…
Hit by ransomware, Brandywine Pediatrics recovers quickly and notifies patients
Add Delaware-based Brandywine Pediatrics, P.A. to our growing list of healthcare entities hit by ransomware. The practice notified patients on December 23 that on October 25, they had discovered that their file server was inaccessible due to a computer virus. They did not indicate what type of ransomware was involved. Brandywine reports that were able…
Family & Sports Medicine center patient records remain inaccessible three months after ransomware attack
Add Desert Care Family & Sports Medicine in Casa Grande, Arizona to the list of health facilities who suffered a ransomware attack. But what happened to them has resulted in my updating my worst breaches of 2016 list. On December 20, the center notified HHS that 500 patients were being notified that their server had…
TheDarkOverlord reveals three more attacks, with more to be revealed
Maybe they gave up on the healthcare sector in their extortion attempts, but since the summer, it appears TheDarkOverlord has turned his/its attention to other sectors. There was the WestPark Capital hack and Gorilla Glue attack, and now, in the past month, three more companies – one of which has some defense contracts. Pre-Con Products…