New York State Comptroller Thomas P. DiNapoli announced school district audits this week. Here are the summaries with links to the audit reports: Hudson City School District – Information Technology (Columbia County) District officials did not adequately secure and protect its information technology (IT) systems against unauthorized use, access and loss. The board and district…
Category: U.S.
“Without Undue Delay,” Saturday edition: D.C.’s Planned Parenthood reports data was breached last fall
Brittany Renee Mayes reports: Planned Parenthood of Metropolitan Washington, D.C., on Friday revealed it had a breach of patient information last fall. In a notice posted to its website, the organization revealed that it found “unusual” activity on its networks on Sept. 3. At that time, it began securing its systems, started an investigation and…
Maine and North Dakota Are Latest States to Adopt the NAIC Data Security Model Law
Deborah George of Robinon + Cole writes: Two more state governors, those of Maine and North Dakota, have signed bills into law that adopt the National Association of Insurance Commissioners (NAIC) data security model law (Model Law). Maine and North Dakota join several other states that have already passed similar laws. Hawaii, Idaho, Illinois, Iowa,…
Data breach of thousands of Chattanooga Library card owners revealed
Karen Aguilar reports: The Chattanooga Library said the private information of around 5,000 library cardholders had been exposed online since October 2020, an IT team they work with catching the mistake last week. “We will go to the mat to protect somebody’s privacy we absolutely will, and so for this to happen is really, really…
Houston Rockets Hit by “Babuk” Ransomware
Bill Toulas reports: The ransomware group known as “Babuk” has added Houston Rockets to its victim list, warning about the imminent leak of 500GB of stolen data if their payment demands aren’t met. The threat actors present screenshots of the exfiltrated files as proof of possession, showing what appears to be contracts, non-disclosure agreements, customer…
Brokerage firm agrees to $3 mln deal for New York cybersecurity rule violations
Sara Merken reports: Brokerage firm National Securities Corp has agreed to pay $3 million in a settlement with New York’s financial services regulator over shortfalls that resulted in four cybersecurity breaches involving unauthorized access to email accounts. Read more on Reuters. NY DFS’s press release: Superintendent of Financial Services Linda A. Lacewell announced today that…