There was big news in the world of hacking prosecutions yesterday. The DOJ announced that Roman Seleznev was sentenced to 27 years in prison for computer hacking crimes that reportedly caused more than $169 million in damage to small businesses and financial institutions. Prosecutors had sought a 30-year sentence to send a strong message, and the sentence appears…
Category: Of Note
No Business Associate Agreement? $31K Mistake
From HHS: The Center for Children’s Digestive Health (CCDH) has paid the U.S. Department of Health and Human Services (HHS) $31,000 to settle potential violations of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy Rule and agreed to implement a corrective action plan. CCDH is a small, for-profit health care provider with…
BakerHostetler 2017 Data Security Incident Response Report Based on 450 Incidents
I don’t post links to most reports with data breach analyses because some are so flawed that they just perpetuate errors some of us have tried to correct. But BakerHostetler handles a lot of breach incidents for their clients, and they’ve issued a report based on 450 incidents they’ve handled. Some of their findings seem quite…
Texas man charged with cyberstalking FBI agent detained without bail
Good Friday turned out not to be a good day for Justin Shafer. The 37 year-old dental IT technician had been arrested on March 31 and charged with cyberstalking an FBI agent and the agent’s family under 18 U.S. Code § 2261A(2)(B). On April 14, he was taken back into custody, this time for violating release conditions. Shafer’s…
Metro Community Provider Network settles HHS breach charges for $400,000 and corrective action plan
HHS announced another settlement today. This one stemmed from a 2011 incident that was previously covered on this site. Once again, the take-home message is that you need to do a risk assessment, and you need a risk management plan commensurate with your risk assessment. In this case, there was no prior risk assessment, and…
Shadow Brokers Publish the Password for the Rest the Stolen NSA Hacking Tools (and Lecture President Trump)
Catalin Cimpanu reports: The Shadow Brokers (TSB) are back, and they’ve released the password for the rest of the hacking tools they claim to have stolen from the NSA last year.TSB is a mysterious group that appeared in the summer of 2016 when they dumped on GitHub and other sites a trove of files they…