Andy Greenberg reports: When Microsoft revealed last May that millions of Windows devices had a serious hackable flaw known as BlueKeep—one that could enable an automated worm to spread malware from computer to computer—it seemed only a matter of time before someone unleashed a global attack. As predicted, a BlueKeep campaign has finally struck. But so far it’s fallen short…
One year after mandatory breach reporting was enacted in Canada, there are 6 times as many breach reports
One year ago, Canadian businesses became subject to increased data breach notification requirements under PIPEDA (the Personal Information Protection and Electronic Documents Act). Rather than deciding whether to voluntarily disclose or report breaches, they were now required to report all breaches that pose a significant risk of harm to individuals to the Office of the…
Ca: Digital pirates search for prey in Southwestern Ontario
Kathleen Saylors and Galen Simmons report: It may have just been a coincidence. But the revelation by Stratford officials on Sept. 19 that the city paid $75,000 to a hacker to regain access to its computer network following a cyber attack five months earlier was followed by a wave of cyber attacks across Southwestern Ontario. In little…
Marriott notifies associates of breach at unnamed vendor
In a year that has seen a number of reports that suggest how costly a past data breach may be for Marriott in Canada as well as the U.K. and U.S., Marriott is disclosing yet another breach. On October 30, Marriott International notified the California Attorney General’s Office of a breach at an unnamed vendor…
Brooklyn Hospital Center notifies patients after data could be not be recovered after malware attack
Brooklyn Hospital Center has issued a press release about a data incident that may not have resulted in access or exfiltration of patient data (they couldn’t determine that) but did result in their inability to recover certain data related to specific patients. From their notice: In late July 2019, the Hospital became aware of unusual activity…
Washington University School of Medicine notifies patients of HIPAA breach
Washington University School of Medicine in St. Louis issued this notice on Nov. 1: Washington University School of Medicine announced today that it began mailing letters to patients whose information may have been involved in a recent security incident at its Department of Ophthalmology and Visual Sciences. On Sept. 3, 2019, the School of Medicine…