Brian O’Donovan reports: Bank of Ireland has been fined €463,000 by the Data Protection Commission for data breaches affecting more than 50,000 customers. It follows an inquiry into 22 personal data breach notifications that Bank of Ireland made to the Commission between 9 November 2018 and 27 June 2019. One of the data breach notifications…
Category: Of Note
ANNOUNCE: HHS’ Office for Civil Rights Seeks Public Comment on Recognized Security Practices and Sharing Civil Money Penalties and Monetary Settlements Under the HITECH Act
The U.S. Department of Health and Human Services’ (HHS) Office for Civil Rights (OCR) today released a Request for Information (RFI) seeking input from the public on two requirements of the Health Information Technology for Economic and Clinical Health Act of 2009 (HITECH Act), as amended in 2021. The growing number of cybersecurity threats are…
US Government Disrupts Botnet Controlled by Russian Government Hackers
Lorenzo Franceschi-Bicchierai reports: The U.S. government announced on Wednesday that it had disrupted a botnet controlled by Russian government hackers before it could be used to launch cyberattacks. In a press release, the Department of Justice announced that it had copied and removed malware from thousands of infected network firewall devices, which were under the…
Would Sea Mar Community Health even know about large patient data dumps if not for DataBreaches.net?
The chronology of Sea Mar Community Health Center’s responses to a massive data breach suggests that they may be first learning of data dumps because of notifications by DataBreaches.net or this site’s reporting of our discoveries. If true, what does that say about their security and incident response? A DataBreaches.net commentary. Since 2021, DataBreaches.net has…
APT10: These sneaky hackers hid inside their victims’ networks for nine months
Danny Palmer reports: A hacking and cyber espionage operation is going after victims around the world in a widespread campaign designed to snoop on targets and steal information. Identified victims of the cyber attacks include organisations in government, law, religious groups, non-governmental organisations (NGOs), the pharmaceutical sector and telecommunications. Multiple countries have been targeted, including…
Audit of the Connecticut Health Insurance Exchange Uncovers 44 Unreported Data Breaches
HIPAA Journal reports: An audit of Connecticut’s Health Insurance Exchange, Access Health CT, by the state auditor has revealed Access Health CT suffered 44 data breaches over the last 3.5 years that had not been fully reported and that sufficient steps had not been taken to safeguard sensitive data. The Connecticut Health Insurance Exchange acts…