Bill Toulas reports: The Russian APT28 hacking group (aka ‘Strontium’ or ‘Fancy Bear’) has been targeting government entities, businesses, universities, research institutes, and think tanks in France since the second half of 2021. The threat group, which is considered part of Russia’s military intelligence service GRU, was recently linked to the exploitation of CVE-2023-38831, a remote…
Detroit-Area District Cancels Classes Due to Cyber Incident
Jim Kasuba reports: A cybersecurity threat resulted in the shutdown of all Allen Park Public Schools classes on Monday. John Tafelski, assistant superintendent for curriculum and instruction, sent a letter to members of the school community on Sunday stating that the school district recently discovered a cybersecurity incident that affected some of its systems. Read…
Exclusive: Clark County School District student data begins to leak; CCSD doesn’t comment
Tiffany Lane reports: Problems continue for Clark County School District families and staff about a week and a half after being notified of a cyber security incident that happened earlier this month. Some parents say they received an email Wednesday with private information about their children. While they do not know if it is related to the…
October 31: OCR Webinar on The HIPAA Security Rule Risk Analysis Requirement
From HHS OCR: OCR Webinar on The HIPAA Security Rule Risk Analysis Requirement Threats and vulnerabilities to electronic protected health information (ePHI) in today’s healthcare environment are numerous and varied. ePHI is under constant threat from malicious insiders selling PHI for financial gain, sophisticated hackers seeking to compromise healthcare systems and blackmail them with ransomware,…
In the throes of bankruptcy and hit by a ransomware attack, Akumin still unable to provide many diagnostic services to patients
On October 18, WFLX reported that Akumin was turning away patients after an apparent ransomware attack. The attack was potentially very concerning because Akumin provides medical scans and radiology services for about 1,000 hospitals and health systems in 48 states, although it is headquartered in Florida. Akumin first noticed suspicious activity on Oct. 11 and…
AU: ASIC modifies licensees’ breach reporting obligations
Rachel Walker and Elouise Casey of Dentons write: Failure to comply with the mandatory breach reporting regime is arguably the canary in the coal mine for regulatory compliance to Australian Securities and Investments Commission (ASIC). We are expecting ASIC’s second annual report on the regime to be published very shortly, and we expect compliance has not…