Jack O’Brien reports on findings from a recent survey of more than 2,870 security professionals from 733 provider organization. Spoiler alert: almost every IT professional agreed with the sentiment that data attackers are outpacing medical enterprises. The total cost of data breaches at healthcare organizations is projected to reach $4 billion by the end of…
A network of ‘camgirl’ sites exposed millions of users and sex workers
Zack Whittaker reports (note that domain names in his article are not clickable links, to prevent accidentally accessing sites): A number of popular “camgirl” sites have exposed millions of sex workers and users after the company running the sites left the back-end database unprotected. The sites, run by Barcelona-based VTS Media, include amateur.tv, webcampornoxxx.net, and placercams.com. Most of…
Vedantu Confirms Hack That Compromised Data Of 687K Users
Shanthi S reports on another big breach out of India. This one involves an EdTech firm that provides online tutorials. Bengaluru-based edtech startup Vedantu has confirmed that it faced a data breach in the last week of September. Data of 687K Vedantu customers were put at risk as the data breach allegedly exposed customer details…
The Ransomware Superhero of Normal, Illinois
<h1>The Ransomware Superhero of Normal, Illinois</h1><p><em> by Renee Dudley, ProPublica This story was co-published with the Chicago Sun-Times and The Pantagraph. ProPublica is a nonprofit newsroom that investigates abuses of power. Sign up for ProPublica’s Big Story newsletter to receive stories like this one in your inbox as soon as they are published. About 10 years ago, Michael…
The First BlueKeep Mass Hacking Is Finally Here—but Don’t Panic
Andy Greenberg reports: When Microsoft revealed last May that millions of Windows devices had a serious hackable flaw known as BlueKeep—one that could enable an automated worm to spread malware from computer to computer—it seemed only a matter of time before someone unleashed a global attack. As predicted, a BlueKeep campaign has finally struck. But so far it’s fallen short…
One year after mandatory breach reporting was enacted in Canada, there are 6 times as many breach reports
One year ago, Canadian businesses became subject to increased data breach notification requirements under PIPEDA (the Personal Information Protection and Electronic Documents Act). Rather than deciding whether to voluntarily disclose or report breaches, they were now required to report all breaches that pose a significant risk of harm to individuals to the Office of the…