Everton Bailey Jr. reports that if you were hoping to get the promised release of the report on Dallas’s response to the ransomware attack by Royal, you’ll have to wait at least two more weeks. The last council meeting ran late and the council never got to review the report, which needs to happen before…
More than a year later, Lifeline Health Systems notifies 75,000 people of a data breach
Lifeline Health Systems is a HIPAA-covered entity, although not all the data involved in their 2022 breach was protected health information. Some of the data related to employees and family members. But here’s the timeline Lifeline provides in their notification template: On August 6, 2022, we identified unusual network activity. We immediately initiated our incident…
The Blackbaud data breach — SuspectFile’s final chapter
Marco A. De Felice of SuspectFile is my brother by another mother. We don’t speak the same language, and we wouldn’t know each other if we passed on a street, but he has the same genetic disorder that I have: a determination to uncover information that breached entities try to bury or ignore. Since 2020,…
Do IT Consultants victim of attack by Ragnar_Locker
On September 2, Ragnar_Locker added Do IT Consultants in Canada to their “Wall of Shame.” For its listing, they wrote: Due to high level negligence and careless network security of DO IT employees, has been allowed a huge leak which affected on clients of the DO IT company. No matter that they are an IT…
United States and United Kingdom Sanction Additional Members of the Russia-Based Trickbot Cybercrime Gang
WASHINGTON — Today, the United States, in coordination with the United Kingdom, sanctioned eleven individuals who are part of the Russia-based Trickbot cybercrime group. Russia has long been a safe haven for cybercriminals, including the Trickbot group. Today’s action was taken by the U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC). The…
Experts Fear Crooks are Cracking Keys Stolen in LastPass Breach
Uh oh. Brian Krebs reports: In November 2022, the password manager service LastPass disclosed a breach in which hackers stole password vaults containing both encrypted and plaintext data for more than 25 million users. Since then, a steady trickle of six-figure cryptocurrency heists targeting security-conscious people throughout the tech industry has led some security experts…