Secretary Sylvia Mathews Burwell and Lisa O. Monaco write: The health care system of the future is taking shape right now, and the foundation of that new system is health care data that is private, trusted and secure. Today, we are pleased to release the final Data Security Policy Principles and Framework (Security Framework) for President Obama’s Precision…
Category: Of Note
Probable security breach may have compromised thousands of Lewis Palmer students’ data
Sherrie Pief reports: Lewis-Palmer School District 38 officials are mum about the probability that a security breach related to its Infinite Campus platform may have compromised more than 2,000 students’ personal information. Infinite Campus is a software program that stores personal and academic information about students in the district. But wait… the district has known…
Insider breach – Shapeshift’s story
@SwiftonSecurity kept telling everyone on Twitter that we #MUSTREAD the story of what happened at Shapeshift.io. And with good reason: it’s a phenomenal account of an insider breach told with the kind of refreshing honesty that’s often missing in most breach disclosures. It also reads like a thriller. I’m going to give readers a different…
Did some disgrace besmirch “Anonymous” by hacking Turkish hospitals and leaking sensitive patient info?
The leak of more than 50 million Turkish citizens’ information in 2015 and 2016 was cause for great concern. Now Kevin Collier reports on a claimed hack involving Turkish citizens’ information that involves very sensitive personal and medical information. The hack was first reported by Hurriyet. Collier reports: A self-proclaimed member of the hacktivist group Anonymous has…
Ukrainian hacker admits hacks of MarketWired, PRN, and Business Wire press releases for securities fraud scheme
A Ukrainian hacker today admitted his role in an international scheme to hack into three business newswires, steal yet-to-be published press releases containing non-public financial information, and use the information to make trades that allegedly generated approximately $30 million in illegal profits, U.S. Attorney Paul J. Fishman announced. Vadym Iermolovych, 28, of Kiev, Ukraine, pleaded…
Double whammy: Avention investigating two data breaches involving employee info
Massachusetts-based Avention, formerly known as OneSource Solutions, is investigating two recent data breaches that may, or may not, be the work of the same criminal(s). In a letter to the New Hampshire Attorney General’s Office, their external counsel provides a chronology of events, beginning with reports by some employees on April 19 that their tax returns had been rejected because…