Mark Young, Paul Maynard, and Anna Sophia Oberschelp de Meneses of Covington & Burling write: On April 18, 2023, the European Commission published its proposal for an EU Cyber Solidarity Act (“CSA”). It aims to strengthen incident detection, situational awareness, and response capabilities, and to ensure that entities providing services critical for day-to-day life can access expert…
Category: Of Note
Man Sentenced for Stealing Over 712 Bitcoin Subject to Forfeiture
An Ohio man was sentenced to four years and three months in prison for stealing over 712 bitcoin that were the proceeds of the darknet bitcoin mixer Helix and subject to forfeiture in a then-pending criminal case. According to court documents, Gary James Harmon, 31, of Cleveland, perpetrated a scheme to steal cryptocurrency that was…
NIST to Finalize Special Publication (SP) 800-66 Revision 2 and Collaborate on Resources for Small, Regulated Entities
NIST to Finalize Special Publication (SP) 800-66 Revision 2 and Collaborate on Resources for Small, Regulated Entities April 25, 2023 For the past 18+ months, the National Institute of Standards and Technology (NIST), in collaboration with the HHS Office for Civil Rights (OCR), has been working to update NIST Special Publication (SP) 800-66, Implementing the Health…
Former Methodist employees plead guilty to HIPAA violations
There’s an update to a case announced in November 2022 in which five former Methodist Hospital employees in Memphis Tennessee were charged with criminal violations of HIPAA. According to the indictment, between November 2017 and December 2020, the five were charged with conspiring with Roderick Harvey to unlawfully disclose patient information in violation HIPAA. Harvey…
Switch hacker Gary Bowser released from jail, will pay Nintendo 25-30% income ‘for the rest of his life’
Chris Scullion writes: Gary Bowser, the hacking group member who was convicted for creating and selling circumvention devices enabling users to play illegal backups on Switch and 3DS, has been released from prison early. Bowser was sentenced in February 2022 to 40 months in prison for his part as a member of a hacking group called Team-Xecuter, which in…
3CX Breach Was a Double Supply Chain Compromise
Brian Krebs reports: In late March 2023, 3CX disclosed that its desktop applications for both Windows and macOS were compromised with malicious code that gave attackers the ability to download and run code on all machines where the app was installed. 3CX says it has more than 600,000 customers and 12 million users in a broad range of industries,…