Jeremiah Fowler reports (typos are in the original): On January 30th I discovered a non-password protected database that contained a massive amount of records totaling 440,336,852. Upon further review I was able to see connections to New York based cosmetic company Estée Lauder. I could see audit logs that contained a large number of email addresses…
Ransomware Attacks Are Causing Cyber Insurance Rates to Go Through the Roof; Premiums up as Much as 25 Percent
Scott Ikeda reports: After a brief lull, ransomware attacks have roared back as a major and persistent security problem in the past year. These attacks have become so frequent and so widespread that cyber insurance rates are spiking, with Reuters reporting some premiums increasing as much as 25% in price. Read more on CPOMagazine.
Patient Lawsuits for HIPAA-Related Breaches
Tammy Worth reports on HIPAA-related privacy breaches and one lawyer’s experience representing plaintiffs. There are some interesting points and examples in the articles as to what awards or settlements have been. As examples: A woman in St. Louis, Missouri, whose mental health records were released to her ex-husband during custody suit settled a case for…
FBI warns about ongoing attacks against software supply chain companies
Catalin Cimpanu reports: The FBI has sent a security alert to the US private sector about an ongoing hacking campaign that’s targeting supply chain software providers, ZDNet has learned. The FBI says hackers are attempting to infect companies with the Kwampirs malware, a remote access trojan (RAT). “Software supply chain companies are believed to be…
Chinese Military Personnel Charged with Computer Fraud, Economic Espionage and Wire Fraud for Hacking into Credit Reporting Agency Equifax
Statement by the U.S. Department of Justice today: A federal grand jury in Atlanta returned an indictment last week charging four members of the Chinese People’s Liberation Army (PLA) with hacking into the computer systems of the credit reporting agency Equifax and stealing Americans’ personal data and Equifax’s valuable trade secrets. The nine-count indictment alleges…
CT: No E-Mail/Internet At Vernon Schools Monday Amid Security Check
Chris Dehnel reports: Schools in Vernon will have no internet access or e-mail capabilities on Monday while education officials look into a potential security breach. Parents were alerted via text and phone messages Sunday evening. According to the messages, school officials discovered what was termed “a potential for unauthorized access to our network” on Saturday…