Justin Rohrlich reports: A Russian hacker stole the identities of 22 of 75 living U.S. Congressional Medal of Honor recipients, using their pilfered personal data to buy tens of thousands of dollars worth of Apple products and luxury watches from American military exchanges, according to a Secret Service search warrant application obtained by The Daily Beast….
Not all cybercriminals are sophisticated
Jake Moore writes: While a lot of media coverage centers on how threat actors are becoming better at evading capture and generally deploy ever more sophisticated techniques, I wanted to tell a story where one criminal in particular was anything but sophisticated. Before I joined ESET, I spent 14 years working in the UK police force working…
Allergy and Asthma Associates in Roanoke Pleads Guilty to Criminal Charge; Enters into Civil Resolution Over Health Care Fraud Allegations
ROANOKE, Va. – Acting United States Attorney Daniel P. Bubar and Virginia Attorney General Mark G. Herring announced today the finalization of a $2.1 million civil resolution with Allergy and Asthma Associates Inc. [AAA], a Roanoke-based, family-owned medical practice that billed Medicare and Virginia Medicaid more than $600,000 for expensive asthma treatments in did not…
Payroll giant PrismHR outage likely caused by ransomware attack
Lawrence Abrams reports: Leading payroll company PrismHR is suffering a massive outage after suffering a cyberattack this weekend that looks like a ransomware attack from conversations with customers. PrismHR is an online payroll, benefits, and human resources platform used by Professional employer organizations (PEO). PEOs use this platform to provide payroll, HR, and benefits services…
AK: Petersburg hospital responds to potential medical records breach
Angela Denning reports: Petersburg Medical Center announced Monday that it learned of a potential breach of federal health care privacy law with some patients’ medical records. But the community hospital says the information was not released outside its walls. According to a press release, the hospital found that an employee viewed records of patients who…
Serasa asked for bank passwords and will reveal itself
Leonard Manson reports: The São Paulo Consumer Protection and Defense Program (Procon-SP) notified Serasa on Monday (1st) to provide clarifications on the collection, and possible use, of the internet banking passwords required by the credit bureau to carry out searches on the site. The request for a bank password, made in the “customer area”, was…