Joseph J. Lazzarotti and Maya Atrakchi of JacksonLewis write: Last week, in its Cybersecurity Summer Newsletter, the Office of Civil Rights (OCR) published best practices for creating an IT asset inventory list to assist healthcare providers and business associates in understanding where electronic protected health information (ePHI) is located within their organization, and improve HIPAA Security Rule compliance. OCR investigations often…
Miami high schooler charged with cyberattacks that stopped online learning
Kevin Collier reports: Police have arrested a Florida high school student for alleged cyberattacks that rendered the Miami-Dade school district’s remote learning platform almost impossible to use. The student, an unnamed 16-year-old junior at the South Miami Senior High School, admitted to attacking the school’s My School Online platform, which is designed to let students attend…
6,000 Roper St. Francis patients’ info possibly breached in compromised email incident
Tony Fortier-Bensen reports: Roper St. Francis Hospital officials said on Thursday that 6,000 patients were affected by an incident where a employee’s email was accessed by someone without authorization and they gained access to personal medical records and information. The incident occurred between June 13 and June 17, but Roper St. Francis officials didn’t learn…
RCMP charge 2 Montreal men in cyberattacks at Canadian Tire, BMO and Simplii
CBC reports: The RCMP have laid charges against two Montrealers after an investigation into high-profile cyberattacks at Canadian Tire, Bank of Montreal and Simplii a few years ago. The RCMP said in a press release Thursday that Jacob Costanzo-Peterson and Félix Costanzo-Peterson have been charged with unauthorized use of a computer, identity theft and possession of a device…
Oregon State University reports IT security incident
Oregon State University announced Thursday that personal information of some students and faculty may have been exposed during a recent IT security incident. A cybercriminal accessed an OSU Ecampus server that contained student and faculty directory information such as email addresses, phone numbers and mailing addresses. No social security numbers were compromised in the incident….
Jewish Federation of Greater Washington reports $7.5 million hack
Well, we all expected more breaches because of more people working remotely. Here’s a sad reminder, reported by Emily Davies: The Jewish Federation of Greater Washington reported a hack that drained $7.5 million from its endowment fund and funneled the money into international accounts. CEO Gil Preuss announced the hack to employees in a virtual call…