John Leyden reports: Calls recorded by a Swedish national health service hotline were stored on an unencrypted system that was publicly accessible to anyone with an internet connection, it has emerged. An estimated 2.7 million phone calls were discovered to have been left open by an unprotected NAS (network attached storage) system, and were accessible…
Category: Of Note
MalwareTech’s Judge Seems More Sympathetic to Hutchins about the Intent of Prosecution than the Law
emptywheel writes: JP Stadtmueller, the judge who will preside over MalwareTech (Marcus Hutchins’) case, last week denied his pretrial motions to get his post-arrest interview and all the charges of his indictment thrown out. So right, that’s not great news for Marcus, or even good news. But to get a better understanding of how the case is…
AZ Plastic Surgery Center refuses thedarkoverlord’s “handsome” proposition, notifies patients and HHS of hack
Yet another healthcare provider has revealed that they were hacked by thedarkoverlord (TDO). Dr. Robert Spies, a plastic surgeon in Scottsdale, Arizona, has notified HHS and his patients of the hackers’ attempt to extort the practice. Although he does not name the hackers responsible in a notice on his web site, Dr. Spies explains: On…
NE: CHI Health officials say virus introduced to health system’s network by third-party vendor’s infected device
So let’s be honest: how often do you monitor your third-party vendors or business associates to ensure that the devices they may connect to your network are free from malware? Julie Anderson reports: CHI Health has caught a virus, but it’s not the kind the health system is used to battling. Dr. Cliff Robertson, CHI…
NL: Major privacy breach: students could access hospital medical records
Ugh.DutchNews.nl reports: Students working for extra cash at Amsterdam’s OLVG hospital group have for years been given complete access to the medical records system, allowing them to read personal information about friends, family and famous people, the Volkskrant said on Friday. The leak was made public by a philosophy student who made telephone appointments for…
Chinese company leaves Muslim-tracking facial recognition database exposed online
Catalin Cimpanu reports: One of the facial recognition databases that the Chinese government is using to track the Uyghur Muslim population in the Xinjiang region has been left open on the internet for months, a Dutch security researcher told ZDNet. The database belongs to a Chinese company named SenseNets, which according to its website provides…