Mathew J. Schwartz reports: Ransomware gangs are increasingly not just claiming that they’ll leak stolen data from victims that don’t meet their ransom demand, but actually following through. […] Speaking at Information Security Media Group’s Virtual Cybersecurity Summit: New York last week, attorney Craig Hoffman, who’s co-leader for the digital risk advisory and cybersecurity team at BakerHostetler, said…
‘Human error’ results in privacy breach for Children’s Disability Services clients: Manitoba government
Charles Lefebvre reports: The Manitoba government says ‘human error’ resulted in personal information about Children’s Disability Services (CDS) clients being unintentionally shared this week. On Friday, the province said in a news release that the privacy breach occurred on Aug. 26, when staff from CDS “accidentally sent an email intended for the Manitoba Advocate for…
ANNOUNCE: Free cybersecurity help for Canadian charities and non-profits
From Hackers for Change: In response to the on-going Covid-19 pandemic, and understanding that many organizations have now either shifted operations online, or are in the process of doing so, our team is offering our cyber security services free of cost. This applies to Canadian charity or non-profit organizations, who can take advantage of this….
Valley Health System recovering from ransomware attack while maintaining patient care
Valley Health Systems (VHS) has joined the unfortunate ranks of health systems that have fallen prey to a ransomware attack. VHS provides primary and preventative care to approximately 75,000 patients each year in southern West Virginia, southeastern Ohio and eastern Kentucky, operating more than 40 healthcare facilities. Their 2019 annual report noted that their sliding…
Over 54,000 scanned NSW driver’s licences found in open cloud storage
Juha Saarinen reports: Tens of thousands of scanned NSW driver’s licenses and completed tolling notice statutory declarations were left exposed on an open Amazon Web Services storage instance, but Transport for NSW doesn’t know how the sensitive personal data ended up in the cloud. The open AWS S3 bucket was found by Bob Diachenko of…
NV: Clark County School District notifies parents after data security incident
AP reports: School officials in Las Vegas notified parents of what administrators termed a “data security incident” involving district computers. The Clark County School District said Thursday the extent of the breach was being evaluated and that distance learning was not affected. Read more on KXNT. The district tweeted a copy of the email it…