Hallie Miller reports: One month after a crippling ransomware incident, Greater Baltimore Medical Center is beginning to restore the Towson hospital’s electronic medical records, officials said this week. GBMC previously disclosed little about the Dec. 6 cyberattack, which disrupted the health care system’s communication and data-keeping infrastructure and forced it to take systems offline and reschedule…
Category: U.S.
Russian Hacker Sentenced To 12 Years In Prison For Involvement In Massive Network Intrusions At U.S. Financial Institutions, Brokerage Firms, A Major News Publication, And Other Companies
Audrey Strauss, the Acting United States Attorney for the Southern District of New York, announced today that ANDREI TYURIN, a/k/a “Andrei Tiurin,” was sentenced in Manhattan federal court to 144 months in prison for computer intrusion, wire fraud, bank fraud, and illegal online gambling offenses in connection with his involvement in a massive computer hacking…
Robservations: Two-year data breach hits employees’ email at WTTW, WFMT
Robert Feder reports: Window to the World Communications, parent company of WTTW-Channel 11 and WFMT 98.7-FM, alerted employees this week to the discovery of a data breach in its computer system believed to have occurred over nearly a two-year period. Investigations by a law firm and forensic accounting firm determined that emails and personal information of approximately 40 staffers were…
DoJ says SolarWinds hackers breached its Office 365 system and read email
Dan Goodin reports: The US Justice Department has become the latest federal agency to say its network was breached in a long and wide-ranging hack campaign that’s believed to have been backed by the Russian government. In a terse statement issued Wednesday, Justice Department spokesman Marc Raimondi said that the breach wasn’t discovered until December 24, which…
School principal ordered to pay $3.6M for sharing students’ nude pictures online
Jacqueline Gray reports: A former principal in Kentucky who is serving a nine-year federal prison sentence was ordered last week to pay $3.6 million for confiscating students’ phones and uploading their nude photos to the internet. According to the Louisville Courier-Journal, six accusers named ex-LaRue County High School principal Stephen Goodlett, 40, and the LaRue…
“Without Undue Delay, Part 1:” Update on earlier ransomware cases
In November, DataBreaches.net published a commentary arguing that patients need to be notified sooner of ransomware dumps even if HIPAA would seem to allow up to 60 days. As a companion to that piece, this site looked at 30 claimed ransomware attacks on U.S. healthcare entities that had been revealed on dedicated leak sites by…