Daniel Tyson reports: Appalachian Regional Hospitals in Beckley and Summers County computer systems were breached Saturday afternoon, but company officials were tight-lipped as to the extent or what information was seized by the hackers. The hospitals’ parent company, Appalachian Regional Healthcare, issued a two-paragraph statement that their hospitals in West Virginia and Kentucky are on…
Category: Of Note
Lewis-Palmer School District tries to downplay vulnerability and chill a concerned parent’s speech
Back in May and then again in July, I noted several articles about Lewis-Palmer School District 38 in Colorado. A parent had raised concerns about whether the Infinite Campus platform might have compromised more than 2,000 students’ personal and academic information. The parent also alleged that the district had known about the problem since September…
America’s Schools Have A Big Cybersecurity Problem
Jason Glassberg of Casaba Security writes: With the 2016-2017 school year already underway, it’s time to draw attention to an ongoing and very serious problem facing the US education system: our schools are ill-equipped to face the mounting threats posed by hackers. While the education system isn’t the worst US industry in terms of cybersecurity,…
Prosthetic & Orthotic Care patient info remains publicly exposed
First, a quick update on the Athens Orthopedic Clinic breach: It took two requests, but I’m pleased to report that Pastebin removed three pastes with over 1,350 patients’ information. Those pastes were separate from an earlier paste with an additional 500 patients’ information. News outlets that continue to report that 500 patients’ information was exposed and put up for sale are, to…
Unorthodox Muddy Waters Partnership Targets St. Jude’s Devices
More on a situation I noted yesterday. This approach to using/monetizing vulnerability discoveries is downright scary…. but will it work to improve security? Here’s one of your must-reads for today. Jordan Robertson and Michael Riley report: When a team of hackers discovered that St. Jude Medical Inc.’s pacemakers and defibrillators had security vulnerabilities that could put…
NYC students’ personal info left on street in careless breach
For your “Why is this still happening in 2016?” file: Just one day after New York State Education Department announced it has appointed its first Chief Privacy Officer, WABC reports: In a shocking breach of confidential information, names, addresses, even social security numbers for students and parents were found outside a Bronx school. Eyewitness News has learned…