Al Saikali of Shook Hardy & Bacon LLP writes about a key issue that has come up a number of times in discussing incident response and liability: One of the most significant questions in data security law is whether reports created by forensic firms investigating data breaches at the direction of counsel are protected from…
Category: Of Note
How ECMC got hacked by cyber extortionists
Henry L. Davis provides some greater depth to the coverage of the ransomware attack on Erie County Medical Center: It was 2 a.m. Palm Sunday. Computer screens across Erie County Medical Center flashed white with bright red words: “What happened to your files?” The ransom demands began with hot pink text. “Step1: You must send us…
“Shoot the messenger:” NYC hospital and vendor threaten DataBreaches.net for reporting on their security failure
Vendor’s mistake potentially exposed “millions” of Bronx-Lebanon Hospital patients’ information; Hospital and vendor try to claim that iHealth Solutions was “hacked” by security researchers who uncovered the security problem; Hospital and vendor issue series of demands, threaten DataBreaches.net for reporting on incident; On May 3, Kromtech Security’s research team, conducting routine research, found that confidential and sensitive patient…
Is FBI Telling Hollywood to “Pay the Ransom?”
Tatiana Siegel reports that there have been “at least a half-dozen extortion attempts against Hollywood firms over the past six months alone, say sources in the cybersecurity industry.” And things are so bad, it seems, that: The frequency of the attacks has overwhelmed the FBI’s Los Angeles field office, which has been unable to properly…
Hackers exploit stolen U.S. spy agency tool to launch global cyberattack
Costas Pitas and Carlos Ruano report: A global cyberattack leveraging hacking tools widely believed by researchers to have been developed by the U.S. National Security Agency hit international shipper FedEx, disrupted Britain’s health system and infected computers in nearly 100 countries on Friday. Cyber extortionists tricked victims into opening malicious malware attachments to spam emails…
Developing: Multiple NHS trusts across England disrupted by ransomware attack
Digital Health is reporting: Multiple hospitals across England have been hit by a large-scale cyber attack on Friday afternoon, with trusts switching off systems. NHS Digital confirmed to Digital Health News that it is aware of a “cyber security incident”. Sources told Digital Health News that there was a major N3 cyber security issue on…