An incident initially reported to HHS on May 3 has been updated to 70,372 patients from the initial report of 50,000. The following is the entity’s notice on their web site, and after you read it, I’ll meet you on the other side to explain it more, because they only discovered the breach when DataBreaches.net…
Category: Of Note
In: Health Ministry Refutes CoWIN Data Leak Claim, Initiates Investigation
Archis Chowdhury reports: The Ministry of Health and Family Welfare refuted the claims around a breach in vaccination data of over 150 million individuals from the CoWIN portal, and termed such claims to be prima facie fake, in a statement issued on Thursday. It also stated that the matter is being further investigated by the…
The Ruthless Cyber Gang Behind the Hospital Ransomware Crisis
Kevin Poulsen and Melanie Evans report on Ryuk threat actors: A ransomware attack on a national hospital chain nearly brought Las Vegas hospitals to their knees. Another attack in Oregon abruptly shut down alerts tied to patient monitors tracking vital signs. In New York, one county’s only trauma center briefly closed to ambulances, with the…
South Korea’s data watchdog barks warnings at Microsoft and five local firms
Laura Dobberstein reports: Microsoft and five other companies have received fines totaling US$75K from South Korea’s Personal Information Protection Commission (PIPC), for running afoul of local data protection laws. The Commission fined Microsoft 16.4 million won (US$14,700) for failing to have protective measures on administrative accounts that led to the leak of over 119,000 email accounts, 144…
Trikbot Hacker Known as Max Is 55-Year-Old Woman From Russia, U.S. Says
Kartikay Mehrotra reports: Alla Witte’s plans for a new career as a computer programmer included helping clients make enough money to see the world, according to YouTube videos and social media posts. She was in her late 40s with a degree in applied mathematics and an itch to do computer programming. But there was a…
South Africa lays down the law on cybercrime
Karen Allen writes: A new law brings South Africa up to international standards for fighting cybercrime. […] Together with the Protection of Personal Information (POPI) Act 2020, which will be in full effect after 30 June 2021, the new cyber law is a key part of South Africa’s armoury in the fight against cybercrime. […] In summary, cybercrime…