The Jerusalem Post reports: Over 500 gigabytes of data, including hundreds of thousands of IDF medical records were allegedly stolen by Iran-linked hackers during a cyberattack on Ziv Medical Center in Safed, Israel, the hackers claimed on Telegram. […] On their Telegram page, the attackers said, “We possess over 500 gigabytes of information, including 700,000 medical documents,…
AlphV claims an attack before even alerting the victim. How will that work out for them? (1)
So AlphV (aka BlackCat) is trying something different again, it seems. This time, it seems they are claiming a victim before they have even attempted to contact the victim or extort them. They post no proof of claims. They state that they are taking this approach because the victim’s cyberinsurance policy does not cover extortion,…
Norwegian Labor and Welfare Administration fined for data protection failures
The Norwegian Supervisory Authority (Datatilsynet) has taken enforcement action, imposing a fine of EUR 1.7 million (USD $1.85 million) on Arbeids- og velferdsetaten, the Norwegian Labor and Welfare Administration (NAV). As part of its investigation, the DPA found that the controller had failed to implement appropriate technical and organizational measures to protect personal data. For example, the…
NZ: Health Worker Arrested for Misusing Vaccination Data: A Case of Breach of Trust
Somasetty Suresh reports: A health worker has been apprehended by the authorities for an alleged misuse and disclosure of vaccination data. The individual, whose identity has not been revealed, has been charged with accessing a computer system for dishonest purposes. The incident came to light recently, prompting swift action from the concerned authorities. The accused…
Russian National Pleads Guilty to Trickbot Malware Conspiracy
In October 2021, Russian national Vladimir Dunaev, was extradited to the U.S. from Korea. On November 30, he pleaded guilty. From the Department of Justice press release: A Russian national pleaded guilty today to his role in developing and deploying the malicious software known as Trickbot, which was used to launch cyber-attacks against American hospitals…
Why we need legislation requiring more transparency in breach notices, Saturday edition (Bluefield University)
Yet another notification letter provides an example of why we need legislation requiring more transparency in disclosures. A DataBreaches.net OpEd. Background: The Bluefield University Breach On May 2, DataBreaches reported a cyberattack involving Bluefield University in Virginia that had first been reported by WVVA. The local media had reported that on May 1, Bluefield had…