Kimberly Peretti, Amy Mushahwar, and Alysa Austin of Alston & Bird write: On October 13, 2020, state financial regulators in partnership with the Bankers Electronic Crimes Taskforce and the U.S. Secret Service, released the Ransomware Self-Assessment Tool (R-SAT) to help financial institutions mitigate the risks of ransomware. The R-SAT is a detailed questionnaire designed to evaluate the…
Ca: Western students alerted about security breach at exam monitor Proctortrack
Andrew Lupton reports: A security breach of Proctortrack, the software Western University uses to monitor student exams remotely, is adding new fuel to a debate raging on campus over privacy concerns about the program. Proctortrack allows students to be monitored to prevent cheating while they take exams at home using their own computers. The program…
Cosmote reveals cyber attack exposed telephone data from thousands of customers
Greek City Times reports: The largest mobile network operator in Greece, Cosmote, revealed that thousands of customers’ information was accessed during a cyber attack that occurred between September 1-5. The breach took place through a third country, most likely from Lithuania. The concerned file “contained elements of information, without names/surnames, on the calls made or…
OH: Potential class action against Health Recovery Services survives motion to dismiss
In April 2019, this site reported on a breach disclosed by Health Recovery Services (HRS). In October, 2019, Troy Foster sued them over the breach. I noted at the time that I was surprised at the claim concerning delayed notification when he had been notified in 60 days. I was not surprised to now read…
GAO: DATA SECURITY: Recent K-12 Data Breaches Show That Students Are Vulnerable to Harm
DATA SECURITY: Recent K-12 Data Breaches Show That Students Are Vulnerable to Harm GAO-20-644: Published: Sep 15, 2020. Publicly Released: Oct 15, 2020. Schools and school districts collect and store a lot of personal information about their students. But are K-12 institutions adequately securing student data? We found: Thousands of K-12 students had their personal information…
British Airways Fined $26 Million in U.K. Probe Over 2018 Data Attack
British Airways has been fined £20m (U.S. $26 million) by the U.K.’s Information Commissioner’s Office for a 2018 breach that impacted more than 400,000 customers. That penalty is significantly less than what the ICO had indicated it intended to do. In a press statement accompanying the monetary penalty notice, the ICO stated: An ICO investigation…