An investigation by the House Oversight and Government Reform Committee into the massive Office of Personnel Management (OPM) breach confirms that it was OPM who first discovered the breach, and not a contractor during the course of demonstrating its product days later. According to documents reviewed by the committee and described in a May 26 letter from Ranking Member Elijah Cummings, Brendan Saulsbury, an…
Category: Malware
CA Health & Longevity Institute patients notified of Bizmatics breach
Seen on dailynews.kaango.com, another Bizmatics client discloses the breach to their patients: (DAILY NEWS) PUBLIC NOTICE: HIPAA Breach Notification. CA Health and Longevity Institute would like to alert patients that in 2015 cyber intruders may have accessed confidential patient information that was stored on an electronic health record system. The clinic uses an electronic health…
Technical report on RUAG breach: malware was from Turla family
More on the defense contractor RUAG breach previously noted on this site. Melani has issued a technical report on the breach that may be of interest to some. From the summary: The attackers have been using malware from the Turla family, which has been in the wild for several years. The variant observed in the…
Kansas Heart Hospital hit by ransomware
KWCH reports that Kansas Heart Hospital became a victim of a ransomware attack Wednesday night. The hospital’s president, Dr. Greg Duick, says the hackers never got access to patient information, but the attack did cause problems. And here’s an example of why paying ransom may not be a good idea. The hospital agreed to pay the small ransom…
O’Charley’s suffers payment card network compromise, notifies customers
Dave Williams reports: Diners who ate at an O’Charley’s restaurant between March 18 and April 8 may have been affected by a data breach, Georgia Attorney General Sam Olens warned Friday. Read more on Atlanta Business Chronicle. O’Charley’s statement, posted today on their web site, explains what happened and offers tips for guests to protect themselves. It appears that…
Court rejects Jetro’s argument in attempt to recoup fines and penalties over breaches
Long-time readers will remember the Restaurant Depot/Jetro breaches reported in 2011 and 2012. It appears that Jetro tried a novel approach to recovering some of the monies the breach cost them. As Dennis S. Klein, Jeffrey B. Goldberg, and Tyler Grove of Hughes Hubbard & Reed LLP explain, the court wasn’t buying their novel argument: … To allow its customers to…