The Brussels Criminal Court has sentenced a Russian hacker to 7 years in prison. His former partner is sentenced to 5 years in prison, of which 1 year is suspended. The couple used the malicious software Crylock to remotely block computer files and demand ransom. In this way, they earned millions of euros. It is…
Bolton Walk-In Clinic patient data leak locked down (finally!)
Finally, finally, FINALLY: exposed patient files from the Bolton Walk-In Clinic in Ontario have been secured. Now that the data is locked down, we can reveal more details about a seriously frustrating data leak that remained unsecured for at least 10 months while the clinic ignored all our notifications and alerts. It’s a story that…
50 Customers of French Bank Hit by Insider SIM Swap Scam
Eric Priezkalns reports: A business student who was interning at Société Générale, a leading multinational bank headquartered in France, is believed to have fed information to SIM swappers who stole from 50 customers of the bank, reports Le Parisien. The intern’s arrest prompted officers from France’s fraud police (La Brigade des Fraudes aux Moyens de Paiement,…
Ontario health agency atHome ordered to inform 200,000 patients of March data breach
Isaac Callan and Colin D’Mello report that Ontario’s health minister is ordering atHome, a provincial agency, to immediately notify approximately 200,000 patients whose data may have been breached in a vendor’s cyberattack in March. There appears to have been a breakdown in what should have happened, as the Health Minister reported that atHome had failed…
Fact-Checking Claims By Cybernews: The 16 Billion Record Data Breach That Wasn’t
When Cybernews published an article about a 16 billion credentials leak, some of us strongly criticized the article as irresponsible and misleading journalism. Although some people have tried to suggest that the Cybernews article had some value in highlighting infostealers, the article was so riddled with falsehoods and misleading statements that the confusion and misunderstandings…
Horizon Healthcare RCM discloses ransomware attack in December
Attacks on revenue cycle management (RCM) firms and debt collection firms often provide criminals with a wealth of personal and protected health information because successfully compromising one billing vendor may give access to the sensitive data of numerous covered entities or clients. Horizon Healthcare RCM (“Horizon”) in Indiana is the latest RCM to disclose that…