UPDATE: As of January 24, CoPilot continues to ignore inquiries sent by this site asking for explanations of why it took so long to notify/disclose this breach. But I see a lot of commenters asking this site/me for information. I don’t have any information to share with you other than what is in the post…
Search Results for: HCA
Sentara notifies 5000+ patients after breach at vendor
WAVY reports: A cyber security breach at a third party vendor for Sentara Healthcare has compromised the records of over 5,000 patients. The incident involves 5,454 vascular and thoracic patients seen between 2012 and 2015 at Sentara hospitals in Virginia. Read more on WAVY. The vendor was not named, nor were many details about the nature of the…
MA: Dracut schools employee data hacked after employee falls for phishing attempt
Employees of Dracut Public Schools in Massachusetts weren’t as fortunate as those at Kanawha County Schools in West Virginia. Rick Sobey and Todd Feathers report that current and former employees’ personal information, including SSN, was acquired by a hacker after an employee fell for what the district describes as a “sophisticated phishing scheme.” They did not report…
The MongoDB attacks: 93 terabytes of data wiped out
The other night on Twitter, after I and others communicated concern as the number of attacks on misconfigured MongoDB installations rose to 27,000 in a relatively short period, @Cyber_War_News and I had a respectful disagreement about the seriousness of the situation: still shocked that yall shocked and fussing about the mongodb ransom spike. — CWN (@Cyber_War_News) January…
Minneapolis settles more lawsuits over snooping in driver database
Whether it’s the healthcare sector, government, or any other sector, if you’re not using adequate tools to monitor and audit your employees’ access to personal information records, it will cost you sooner or later. Eric Roper reports: The long list of lawsuits against Minnesota governments for employees improperly snooping into the state driver’s license database…
Don’t pay the MongoDB ransom until you check to see if it’s a scam
For the past week, a number of us have been watching the explosive growth of attacks on misconfigured MongoDB installations. Victor Gevers of GDI Foundation and Niall Merrigan, a Norwegian developer, have been providing yeoman service investigating the problem, making notifications, and keeping us all apprised of their findings through their Twitter accounts. It all…