Krishnendu Banerjee reports: Amid escalating tensions between China and Taiwan, Chinese hackers have allegedly stolen data of nearly six million Taiwanese. The largest data breach in the country’s history, Chinese hackers targeted a Taiwanese job bank and sold the data on the dark web as per authorities. […] During the search, authorities found an account…
Category: Of Note
Was OFAC’s Advisory an October Surprise or More of the Same?
Lee A. Casey and Theodore J. Kobus III of BakerHostetler comment on the recent OFAC advisory that made a lot of headlines this past week. As I had pointed out in my preface to coverage of the advisory, it was footnoted that the advisory does not have the force of law or change any regulations…
NY: Former Information Technology Employee Of Hospital Sentenced To 30 Months In Prison For Computer Intrusion
From the SDNY, a press release involving an unnamed hospital in NYC. I’ll tell you more about this one after the press release: Audrey Strauss, the Acting United States Attorney for the Southern District of New York, announced that RICHARD LIRIANO was sentenced yesterday to 30 months in prison for engaging in a scheme to…
Magnolia Pediatrics notifies patients of a security incident after OCR tells them it’s reportable
Almost one year after Magnolia Pediatrics notified 11,000 patients about a ransomware attack on an unnamed IT vendor, they are now notifying more than 12,000 patients of another attack. This time, they wound up firing their vendor. According to a notification on their web site, on March 26, the Magnolia Pediatrics discovered a security incident….
It takes hackers 1 minute to find and abuse credentials exposed on GitHub
Paul Bischoff reports on an issue DataBreaches.net and Jelle Ursem recently reported on: data being exposed because of code left in public repositories on GitHub (see our report about exposed protected health information in No Need to Hack When It’s Leaking). Bischoff writes that Comparitech researchers sought to find out how long it took hackers…
Anthem agrees to pay $39.5M in latest settlement over 2015 hacking
John Russell reports: Anthem Inc. has agreed to pay a group of states $39.5 million to settle claims the health insurer failed to safeguard its data, a breach that led to a massive computer hacking in 2015 that compromised the private information of 78.8 million customers and former customers. The Indianapolis-based company announced the settlement…