Ashley Stewart reports: Kirkland-based Rightside was the target of a “highly sophisticated phishing scam,” resulting in the theft of employees’ personal information, according to an email obtained by the Puget Sound Business Journal. The company notified affected employees this week, explaining that it had been the target of a cyber attack for several months and, on…
Jason Pierre-Paul suing ESPN, writer for tweeting medical records
Julia Marsh reports: Giants defensive end Jason Pierre-Paul is flagging ESPN and its reporter Adam Schefter for posting his private medical records online to millions of readers. Pierre-Paul, 27, sued ESPN and Schefter in a Florida court Wednesday, citing a violation of his privacy. Read more on NY Post. Okay, this seemed to involve a…
Addressing Gaps in Cybersecurity: OCR Releases Crosswalk Between HIPAA Security Rule and NIST Cybersecurity Framework
The sensitive health information maintained by health care providers and health plans has become an increasingly attractive target for cyberattacks. The need for health care organizations to up their game on health data security has never been greater. To help health care organizations covered by the Health Insurance Portability and Accountability Act (HIPAA) to bolster…
Patient monitors altered, drug dispensary popped in colossal hospital hack
Scary stuff. Darren Pauli reports: Security researchers have exploited notoriously porous hospital networks to gain access to, and tamper with, critical medical equipment in attacks they say could put lives in danger. In tests, hospital hackers from the Independent Security Evaluators research team popped patient monitors, making them display false readings which could result in…
DHS Report Details “Persistent” Cyber Targeting of Police, Emergency Services
Public Intelligence reports: Cyber attacks against law enforcement, fire departments and other emergency services have become increasingly common and are likely to increase according to a recent intelligence assessment prepared by the Department of Homeland Security and the Multi-State Information Sharing and Analysis Center (MS-ISAC). The assessment, which was distributed to law enforcement in September…
Congress Looking at Potential Energy-Sector Cybersecurity and Privacy Reform
C. Kyle Simpson and Jared Bomberg write: Energy-sector cybersecurity and privacy is generating significant attention of late. Last month, the Federal Energy Regulatory Commission issued a final rule creating new standards for the cybersecurity of the electric grid. FERC followed this issuance with a report on electrical grid recovery and restoration planning that makes a number of recommendations for…