Shreyas Reddy reports: North Korea has thrown its weight behind a Russian effort to shore up global cyber “stability and security,” Moscow announced Tuesday, forming an unlikely coalition of states better known for instigating cyberattacks than stopping them. Belarus, Syria and Nicaragua also joined the two to submit the Concept of the U.N. Convention on…
UK: The Downs School, hit by possible cyber attack, seeking help from West Berkshire Council, the Department for Education and cyber security experts
Niki Hinman reports: Pupils at a Compton school have been without access to the internet for nearly a week – because of a possible cyber attack. Downs School wrote to parents explaining that IT systems had been compromised. […] He said the IT department has been working closely with the Department For Education, West Berkshire…
Re-Victimization from Police-Auctioned Cell Phones
Brian Krebs writes: Countless smartphones seized in arrests and searches by police forces across the United States are being auctioned online without first having the data on them erased, a practice that can lead to crime victims being re-victimized, a new study found. In response, the largest online marketplace for items seized in U.S. law…
AG Platkin Co-Leads $2.5-Million Multistate Settlement with EyeMed Over 2020 Data Breach
NEWARK–Attorney General Matthew J. Platkin announced today that New Jersey is co-leading, with Oregon and Florida, an overall $2.5-million settlement with EyeMed Vision Care (“EyeMed”) that resolves an investigation into a data breach that compromised the personal and medical information of approximately 2.1 million people, including more than 52,000 from New Jersey. Pennsylvania also joined…
#StopRansomware: BianLian Ransomware Group
Release Date: May 16, 2023 Alert Code: AA23-136A Summary Note: This joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail various ransomware variants and ransomware threat actors. These #StopRansomware advisories include recently and historically observed tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs)…
HHS Office for Civil Rights Settles HIPAA Investigation with Arkansas Business Associate MedEvolve Following Unlawful Disclosure of Protected Health Information on an Unsecured Server for $350,000
As background: this case began with someone finding an unsecured FTP server owned by MedEvolve. He reported it to DataBreaches. This site first reported on the leak in 2018. This site also reported when MedEvolve issued a statement months later, and again two years later when HHS got them to notify patients. Today, the U.S….