From HHS, a bulletin concerning a settlement following a malware incident in 2011 that might have been avoided had the covered entity updated and patched their software: Anchorage Community Mental Health Services (ACMHS) has agreed to settle potential violations of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Security Rule with the Department…
Report finds Colorado state computers vulnerable to hacker attack
Chris Halsne reports: A just-released audit finds that Colorado state computer systems are vulnerable to a cyber attack. The report mirrors the results of a year-long FOX31 Denver investigation. We found gaping holes in security, some of which exposed the Social Security and bank account numbers of state employees and contractors. Monday, the State Auditor`s Office blamed the…
A Breakdown and Analysis of the December, 2014 Sony Hack
Risk Based Security (RBS) has posted a chronology and detailed analysis of the data dumps to date in the Sony hack. This is a must-read article for journalists or those interested in the scope of data types involved.
VA: Woman sentenced for stealing identities of patients
Scott Daugherty reports: A Suffolk woman was sentenced Monday to 5 years and 5 months in prison for her role in an identity theft scheme that targeted medical patients. The sentence is on top of a two year one Sheila Clark Lewis is already serving in Suffolk, as well as any sentence she might receive…
Officials report University of Oklahoma nursing web server compromised (updated)
NewsOK reports: The University of Oklahoma Health Sciences Center announced Monday that a College of Nursing Web server was compromised. University personnel discovered the security breach Oct. 20, according to a news release. While working to recover the system on Nov. 3, they learned the compromise could have enabled unauthorized access to sensitive data. University…
SG: Hacker jailed 6 months for attacking Prime Minister’s Office website and other offences
Ian Poh reports: Undeterred by the Government’s warning that it would deal with those who threaten to attack Singapore’s cyber infrastructure, a hacking enthusiast tested his skills on the Prime Minister’s Office (PMO) website. Mohammad Azhar Tahir, 28, was sentenced to two months’ jail on Monday for entering unauthorised computer code into the site on…