This is an absolutely mind-boggling breach. How could no one looking at the list of participants in a Signal chat not question what a reporter was doing in a war plans chat? Jeffrey Goldberg reports: The world found out shortly before 2 p.m. eastern time on March 15 that the United States was bombing Houthi…
Category: Of Note
Trump Administration Begins Shifting Cyberattack Response to States
Angus Loten and James Rundle report: The Trump administration wants state and local governments to play a bigger role in protecting water utilities, ports and other critical infrastructure from cyberattacks. In an executive order signed Tuesday, President Trump directed White House senior security advisers to draw up a national resilience plan to protect critical infrastructure…
Indiana health systems unite to help smaller providers tackle cybersecurity
Naomi Diaz reports: Health systems in Indiana are joining forces to help provide small healthcare providers with actionable cybersecurity measures. The initiative, called Healthcare Cyber in a Box, was developed in collaboration with the Indiana Executive Council on Cybersecurity, a state-led effort originally established by former Gov. Mike Pence and continued under Govs. Eric Holcomb…
Security Researcher Comments on HIPAA Security Rule
As long-time readers know, DataBreaches has occasionally run into difficulties when trying to helpfully notify entities of their data leaks or breaches. In other cases, independent researchers have also reported frustration with trying to get entities to respond to responsible disclosures. More often than not, initial attempts at disclosure are ignored or go to spam…
Australia Sues FIIG Investment Firm in Cyber ‘Wake-Up Call’
Jayant Chakravarti reports: The Australian financial regulator has filed a lawsuit against FIIG Securities, accusing the leading investment and financing company of lacking adequate cybersecurity controls to stop a threat actor from stealing confidential personal information of 18,000 customers. The Australian Securities and Investments Commission said it decided to sue Brisbane-headquartered FIIG Securities in Federal Court after…
FCC proposes new cybersecurity mandates for submarine cable operators in major rule review, seeks public input
Industrial Cyber reports: The U.S. Federal Communications Commission (FCC) is conducting its first comprehensive review of submarine cable rules since 2001 to enhance the protection of the nation’s submarine cable infrastructure amid evolving national security concerns. The review also proposes that all applicants for cable landing licenses and licensees submitting periodic reports must certify that they have…