Gugu Lourie reports: On the 31st of August 2023, the Information Regulator took action by issuing an Enforcement Notice against Dis-Chem, due to their non-compliance with several provisions of the Protection of Personal Information Act (POPIA). In the timeline of events, it was revealed that during the months of April and May in 2022, a…
LogicMonitor customers who didn’t change default passwords were hit by hackers
Lorenzo Franceschi-Bicchierai reports: Some customers of the network security company LogicMonitor have been hacked due to the use of default passwords, TechCrunch has learned. The incident is due to the fact that, until recently, LogicMonitor was assigning customers default — and weak — passwords such as “Welcome@” plus a short number, according to a source…
HHS Security Risk Assessment Tool Version 3.4 and Webinars
From HHS OCR: The Office for Civil Rights (OCR) and the Office of the National Coordinator for Health Information Technology (ONC) at the U.S. Department of Health and Human Services (HHS) are hosting two webinars for the release of version 3.4 of the Security Risk Assessment (SRA) Tool. This tool is designed to aid small…
MS: Singing River Health System still recovering from recent cyberattack
Harper Robinson reports: Surgeries delayed, prescriptions needing to be written by hand, and some patients being transferred to other hospitals. These are all affects of the recent cyberattack at Singing River Health System. “We still deliver great patient care,” said Dr. Randy Roth, Singing River Chief Medical Officer. “It’s a little bit slower. For us…
UMinn sued, accused of taking insufficient action to prevent data breach
The Talk of DelMarVa reports: A lawsuit filed on behalf of a former student and former employee at the University of Minnesota accuses the university of not doing enough to protect personal information from a recent data breach. Attorneys for the two plaintiffs said in the lawsuit filed in federal court Friday that the university “was fully…
AZ: Data breach could affect more than 100,000 in Pima County
Jamie Donnelly reports on yet more people affected by the MOVEit breach: More than 100,000 Pima County residents could be affected by a nationwide data breach that affected the company that handled COVID-19 case investigations and contact tracing here, officials say. The company, Maximus Health Services Inc., notified the county earlier this month that data…