HC3: Analyst Note TLP: White Report: 202208241200 Executive Summary Karakurt ransomware group, also known as the Karakurt Team and Karakurt Lair, is a relatively new cybercrime group, with researchers reporting its first emergence in late 2021. Karakurt actors claim to steal data and then threaten to auction it off or release it to the public…
Category: Of Note
OCR Settles Case Involving Decade-Long Improper Disposal of Protected Health Information
There is an enforcement update to an incident noted on this site in 2018. The incident that involved New England Dermatology P.C., d/b/a New England Dermatology and Laser Center (“NDELC”) was summarized by HHS in their resolution agreement and corrective action plan for this case: On May 11, 2021, NEDLC filed a breach notification report…
Ex-Twitter exec blows the whistle, alleging reckless and negligent cybersecurity policies
By Donie O’Sullivan, Clare Duffy and Brian Fung, CNN Business Video by John General, Zach Wasser and Logan Whiteside, CNN Business Portraits by Sarah Silbiger for CNN Twitter has major security problems that pose a threat to its own users’ personal information, to company shareholders, to national security, and to democracy, according to an explosive…
From the “What Could Possibly Go Wrong Department” after it went wrong, Monday edition
In June, many of us first became aware that Facebook was receiving sensitive medical information from hospital websites. Of 33 hospital websites that The Markup tested, 10 of them had trackers (“Meta Pixels”) which sent information to Facebook when a patients clicked a button on the hospital’s site to schedule an a medical appointment. This…
Id: Communication Ministry studying report of IndiHome data leak
Antara News reports: The Communication and Informatics Ministry is still studying a report of the alleged leak of IndiHome subscribers ‘ personal data. The ministry will soon summon the management of state-owned telecommunication operator PT Telkom Indonesia as the holding company to clarify the incident, the ministry’s director general of informatics application, Semuel Abrijani Pangerapan,…
UPDATE NOW: Apple warns hackers could get ‘full admin access’ to iPhones, iPads, iMacs
AP and CNN report: Apple disclosed serious security vulnerabilities for iPhones, iPads and Macs that could potentially allow attackers to take complete control of these devices. In security updates posted online on Wednesday and Thursday, Apple said the vulnerability affects iPhones dating back to the 6S model, iPad 5th generation and later, iPad Air 2 and later, iPad…