Shaun Wooller reports: The NHS has launched a probe after a pupil took printed records containing details of 150 patients to school to use as drawing paper. Bedfordshire Hospitals Foundation Trust confirmed it is investigating how the child got hold of the personal documents. However, it refused to say if any of the pupil’s relatives worked for…
Category: Of Note
Uber’s former Chief Security Officer sentenced to three years probation for covering up massive data breach
SAN FRANCISCO – Joseph Sullivan was sentenced to serve a three-year term of probation and ordered to pay a fine of $50,000, announced First Assistant United States Attorney Stephanie M. Hinds and FBI San Francisco Special Agent in Charge Robert K. Tripp. The sentence was handed down by the Hon. William H. Orrick, United States…
Brightline continues notifying clients of GoAnywhere incident; count continues to rise (more than 1 million)
Updated May 3: When DataBreaches checked Clop’s leak site today, the listing for Brightline was gone. Whether this means that they paid Clop to get it removed, or if its removal is just temporary remains to be seen. But out of all the health-related Fortra clients this site reported on in April, the Brightline listing…
Merck entitled to $1.4B in cyberattack case after appeals court rejects insurers’ ‘warlike action’ claim
Angus Liu reports: Merck may finally be entitled to a hefty insurance payout from the high-profile NotPetya cyberattack—if an appeals court ruling stands. A New Jersey appellate court on Monday ruled that a group of insurers can’t use war as an argument to deny Merck coverage from the notorious cyberattack that afflicted the company and others…
288 dark web vendors arrested in major marketplace seizure
Fromm Europol’s press release: In an operation coordinated by Europol and involving nine countries, law enforcement have seized the illegal dark web marketplace “Monopoly Market” and arrested 288 suspects involved in buying or selling drugs on the dark web. More than EUR 50.8 million (USD 53.4 million) in cash and virtual currencies, 850 kg of…
The Untold Story of the Boldest Supply-Chain Hack Ever
Kim Zetter has a fascinating piece on the run-up to the SolarWinds attack. Here’s a snippet: In fact, the Justice Department and Volexity had stumbled onto one of the most sophisticated cyberespionage campaigns of the decade. The perpetrators had indeed hacked SolarWinds’ software. Using techniques that investigators had never seen before, the hackers gained access…