As a resource for my site visitors, I thought I’d mention an article by Josephine Cicchetti and Laura Wall on the relative merits of a credit freeze as opposed to credit monitoring if you are notified that your data has been caught up in a data breach. For a number of years now, both Brian Krebs…
Category: Of Note
MO: A second TheDarkOverlord target confirms hack (updated)
In the past 24 hours, two of TheDarkOverlord’s targets have publicly acknowledged breaches previously reported by this site. Yesterday, it was the Athens Orthopedic Clinic in Georgia who issued a public statement (previous coverage). Today, it’s a group of clinics in Farmington, Missouri (previous coverage). Daily Journal Online reports: The medical group which includes Midwest…
Athens Orthopedic Clinic to begin notifying patients of hack (UPDATE2)
On June 26, this site reported that a database with almost 397,000 patient records was up for sale on the dark net. I subsequently tentatively identified the entity as Athens Orthopedic Clinic in Georgia, but they never officially confirmed that it was their data, noting only that they were investigating and had only first found…
Wikileaks Put Women in Turkey in Danger, for No Reason
Zeynep Tufekci writes: Just days after a bloody coup attempt shook Turkey, Wikileaks dumped some 300,000 emails they chose to call “Erdogan emails.” In response, Turkey’s internet governance body swiftly blocked access to Wikileaks. For many, blocking Wikileaks was confirmation that the emails were damaging to Turkish President Recep Tayyip Erdogan and the government, revealing…
Potential Risks and Rewards of Cybersecurity Information Sharing Under CISA
Peter Carey and Keith M. Gerver of Cadwalader, Wickersham & Taft LLP, write: When President Obama signed into law the Cybersecurity Act of 2015, which was designed to facilitate information sharing on cybersecurity threats between the public and private sectors, proponents hailed it as “our best chance yet to help address this economic and national security priority in a…
University of Mississippi Medical Center to pay $2.75M to settle HIPAA charges
The University of Mississippi Medical Center (UMMC) has agreed to settle multiple alleged violations of the Health Insurance Portability and Accountability Act (HIPAA) with the U.S. Department of Health and Human Services, Office for Civil Rights (OCR). OCR’s investigation of UMMC was triggered by a breach of unsecured electronic protected health information (“ePHI”) affecting approximately…