Victoria Hudgins reports: Add case management platform TrialWorks to the laundry list of companies and public sector agencies that were struck and paralyzed by a cyberattack this year. And unless lawyers backed up their client files to a separate storage network, they could be frozen out of their data by TrialWorks’ problems. Still, experts say there are ways to mitigate the damage….
Category: Of Note
“Crafty Cockney” loses extradition appeal; closer to standing trial in U.S. for alleged role in “thedarkoverlord” attacks
Nathan Wyatt, the 38 year-old U.K. resident known as “Crafty Cockney” on AlphaBay market, has lost his bid to convince the High Court to overturn a lower court’s ruling that he should be extradited to the U.S. Today’s ruling means that Wyatt is one step closer to being extradited to stand trial in federal court…
Failure to Encrypt Mobile Devices Leads to $3 Million HIPAA Settlement
From HHS OCR: The University of Rochester Medical Center (URMC) has agreed to pay $3 million to the Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services (HHS), and take substantial corrective action to settle potential violations of the Health Insurance Portability and Accountability Act (HIPAA) Privacy and Security Rules….
Now available: Catalan Information Security Center produces reports in English for the 2019 Barcelona Congress
CESICAT (Information Security Center of Catalonia) contacted me this week to share some news and to ask me to share it with my readers and followers on Twitter. I am delighted to. CESICAT is a public organization committed to protecting cybersecurity of the public sector in Catalonia. Next year they will become the Cybersecurity Agency…
Europol Publishes Law Enforcement and Industry Report on Spear Phishing
The Hague — Today, 4 November 2019, Europol’s European Cybercrime Centre (EC3) published a strategic report on spear phishing, reflecting the views of both law enforcement and private industry on one of the most prevalent cyber threats currently affecting organisations across the EU. Spear phishing describes the practice of targeting specific individuals within an organisation…
One year after mandatory breach reporting was enacted in Canada, there are 6 times as many breach reports
One year ago, Canadian businesses became subject to increased data breach notification requirements under PIPEDA (the Personal Information Protection and Electronic Documents Act). Rather than deciding whether to voluntarily disclose or report breaches, they were now required to report all breaches that pose a significant risk of harm to individuals to the Office of the…