CoinTelegraph reports: A fake website of the popular Ethereum Denver conference is the latest phishing target of a red-flagged smart contract that has stolen over $300,000 worth of Ether. The popular conference saw its website duplicated by hackers this week in order to trick users into connecting their MetaMask wallets. Read more at CoinTelegraph.
Mscripts notifies 66,372 patients whose prescription information was in unsecured cloud storage for two years
“Thousands of pharmacies & millions of people use mscripts,” the mscripts website claims. “We provide a digital communication platform to help patients stay on track with their healthcare by delivering targeted messages through a mobile and web platform tied directly to the pharmacy dispensing system,” the California firm explains. mscripts is Cardinal Health’s mobile pharmacy…
Edgepark Medical Supplies notifies patients of Rise Interactive Media & Analytics data breach
RGH Enterprises, Inc. d/b/a Edgepark Medical Supplies (“Edgepark”) is an Ohio medical supplies provider that ships products directly to patients and bills their insurance for them. Rise Interactive Media & Analytics, LLC (“Rise”) is an Illinois firm that provides digital marketing services for Edgepark as a business associate. They also provide analytics and other services…
Reventics notifying patients of ransomware incident
Reventics LLC is a business associate in Colorado offering revenue cycle management, clinical documentation, and quality improvement services. On or about December 15, 2022, Reventics detected some anomalies in its systems and discovered an intrusion and encryption of its files. Some of those files contained protected health information (PHI) of patients. On December 27, an…
The Feds Are Launching a Hack Back Squad
Mack DeGuerin reports: The U.S. says it’s punching back in the digital cold war over emerging technologies with a new “Disruptive Technology Strike Force.” “Our goal is simple but essential—to strike back against adversaries trying to siphon off our best technology,” a deputy attorney general said. The strike force, a joint initiative created by the Department of Justice…
Department of Education to Enforce Revised Cybersecurity Requirements and Expands Interpretation of “Third-Party Servicer” Definition
Duane Morris writes: The Department of Education has issued an electronic notice relating to the updated cybersecurity regulations published by the Federal Trade Commission (FTC). On December 9, 2021, the FTC amended the Safeguards Rule under the Gramm-Leach-Bliley Act (GLBA). This comprehensive amendment updated data security requirements for financial institutions, including all Title IV institutions of higher…