Another day, another phishing report from a HIPAA-covered entity. This time, it’s Sacred Heart Rehabilitation Center in Michigan. The phishing attack itself occurred in early April. It’s not clear when the center first discovered the breach, but they only first discovered PHI was involved in November. The center’s release did not reveal numbers, and this is…
Ransomware hits K-12 district in Connecticut
Betsy Foresman reports: Bridgeport Public Schools, a K-12 district in Connecticut about 40 miles northeast of the Bronx, became infected by ransomware on Friday, Jeffrey Postolowski, director of technology services, confirmed to EdScoop. First reported by the Connecticut Post, the cyberattack originated from a virus dispatched by a malicious outsider and has encrypted district data…
Convicted terrorist charged with stealing hard drive with victim data on it
AP reports: Belgian authorities said Wednesday that they have arrested a man who served jail time on terrorism charges over the theft of a computer hard drive containing autopsy reports about the victims of the suicide bombings in Brussels in 2016. Brussels prosecutor’s office spokesman Denis Goeman said the man, identified only by the initials…
Another data breach? Amazon India leaks sellers information in tech error
Yuvraj Malik reports: A month after its global e-commerce site faced a technical glitch that left exposed user data, Amazon has suffered a similar malfunction this time to its India platform. Sources in know of the situation said that a glitch was reported internally last week that exposed some sellers’ private financial information to other…
Are Indian firms too lax in data security and in responding to breach notices?
Thanks to assistance from Banbreach and Huffington Post reporter Rachna Khaira in India, a leak of thousands of children’s names and grades, and their parents’ names and email addresses has finally been secured. But it really shouldn’t have been so difficult to accomplish. Back in August, I was contacted by one of a few researchers who…
How a Russian firm helped catch an alleged NSA data thief
Fascinating reporting by Kim Zetter on Politico. The 2016 arrest of a former National Security Agency contractor charged with a massive theft of classified data began with an unlikely source: a tip from a Russian cybersecurity firm that the U.S. government has called a threat to the country. Moscow-based Kaspersky Lab turned Harold T. Martin…