Alexander Boyd and Colin H. Black of Polsinelli PC write: On February 16, 2023, the National Credit Union Administration (“NCUA”) unanimously approved a final rule that requires a federally-insured credit union to report “reportable cyber incidents” to the NCUA as soon as possible, and in no event later than 72 hours after the credit union…
Category: U.S.
Lessons From a Ransomware Attack: The Importance of Partnership & Collaboration
The following is a guest article by John Gaede, Director of Information Systems at Sky Lakes Medical Center that appeared on Healthcare IT Today. Imagine a rural business is the victim of a cyberattack. A nefarious person or group convinces an unsuspecting employee to open an email promising a bonus. Within 12 hours, every piece of technology…
Washington State city allegedly hit by ransomware
Jurgita Lapienytė reports: Lakewood is a city in Pierce County, Washington, with a population of over 63,000. BlackCat claimed it had breached Lakewood City Council and stolen over 250GB worth of data. “Because of their misunderstanding and inability to negotiate, we share information with you,” BlackCat said and shared a link to download 252GB of…
Ways and means committee demands investigation into 2021 taxpayer info leak
Katie Kerekes reports: Nineteen months after the confidential tax filings of American citizens were leaked, the House Committee on Ways and Means is seeking answers. In a letter to the Inspector General for Tax Administration, committee chairman Jason Smith (R-MO) relays his “expectations” regarding the “egregious and unprecedented” leak of this tax information, a duty which he affirms the…
Aviacode remains silent after 0mega dumps 200 GB of their files
On January 9, DataBreaches noticed that Aviacode had been added to the leak site for 0mega. Aviacode, which is part of GeBBS Healthcare Solutions, offers medical coding services, medical coding audits, coding denial management, clinical documentation improvement, and revenue cycle management for billings and claims. As such, it is often a business associate for HIPAA-covered…
Lehigh Valley Health Network reveals attack by BlackCat
The Morning Call reports: The Lehigh Valley Health Network has been the target of a cyberattack from a suspected Russian ransomware group. In a statement issued Monday morning, LVHN President and CEO Brian A. Nester said, “Lehigh Valley Health Network has been the target of a cybersecurity attack by a ransomware gang, known as BlackCat,…