Andrew Martin reports: Consumers may soon be able to buy electronic products with a label indicating they are “cyber secure,” according to US officials. The White House on Tuesday announced the launch of a new US Cyber Trust Mark, indicating designated items follow best practices to avoid possible hacks. Products with the cyber mark are…
Category: Miscellaneous
Ohio state auditor issued guidance on email scams in April; employees might be liable if they fall for a scam
Corinne Colbert reports: The Ohio Auditor of State’s office issued a bulletin this past spring with guidance on detecting and avoiding payment redirect scams — and warned that public employees who failed to follow that guidance could be held accountable. That could have ramifications for whoever in Athens city government is determined to be responsible…
LastPass breach comes back to haunt users as hackers steal $12 million in two days
Solomon Klappholz reports: A major data breach at password manager firm LastPass in 2022 is still causing mayhem two years later, with cyber criminals using stolen information to carry out further attacks. According to data collated by crypto investigator ZachXBT, hackers stole $12.38 million in cryptocurrency from LastPass users on 16 and 17 December. The attackers drained…
NATO to launch new cyber center by 2028: Official
Carley Welch reports: In order for the alliance to be better equipped at dealing with cyber threats, NATO is in the process of standing up a new cyber center — to go online by 2028 — that will meld parts of its various cyber entities into one, a NATO official told Breaking Defense this week. “This center will…
Global Police Action Against DDoS Attackers: Operation PowerOFF
A press release from Dutch Politie: Starting this week, law enforcement agencies from fifteen different countries, together with Europol, are once again taking large-scale action against DDoS-for-hire services. In Operation PowerOFF, three arrests were made internationally, 27 websites were taken offline and data from three servers was secured. The Dutch police, under the authority of…
Hudson Valley Health Care Facility Operator Fined $1.4M for Failing to Protect Patient Data; $850,000 suspended
Once again, we see a state attorney general taking data protection enforcement action against a healthcare entity when HHS hasn’t. The incident referred to below was reported to HHS’s public breach tool in December 2023, but there is no notation that any HHS investigation into it has been closed. From the NYS Attorney General’s Office,…