Two reports related to malware: Bill Toulas reports: A threat group tracked as ‘Worok’ hides malware within PNG images to infect victims’ machines with information-stealing malware without raising alarms. This has been confirmed by researchers at Avast, who built upon the findings of ESET, the first to spot and report on Worok’s activity in early…
Five Former Methodist Hospital Employees Charged with HIPAA Violations
Criminal prosecutions under HIPAA are still relatively rare. Here’s one reported by the U.S. Attorney’s Office in the Western District of Tennessee on November 10: Memphis, TN – A federal grand jury has indicted five former Methodist Hospital employees for conspiring with Roderick Harvey, 40, to unlawfully disclose patient information in violation of the Health Insurance…
AU: Legal Aid ACT won’t pay hackers’ ransom demands
Lottie Twyford reports: Legal Aid ACT has confirmed it will not pay the ransom demanded by the hackers who earlier this month stole private information from the commission. That hack could have exposed the data of some of the organisation’s most vulnerable clients, including refugees and victims of family violence. Read more at The Riot…
MI: Ransomware attack responsible for shutdown affecting Jackson, Hillsdale schools
Martin Slagter reports: Jackson County Intermediate School District officials took network systems offline after technology staff determined suspicious activity to be the result of a “ransomware incident.” Public school districts in both counties canceled classes Monday, Nov. 14, with the system outage impacting a wide range of building operations including but not limited to heating,…
Surprise: Daniel Kaye, operator of The Real Deal, pleads guilty to one count, is sentenced to time served, and is released.
It seems like only weeks ago that the U.S. Attorney’s Office for the Northern District of Georgia was trumpeting the arraignment of Daniel Kaye, who had been indicted last year. Oh wait, it was only weeks ago. Kaye, also known as “Popopret,” “Bestbuy,” “TheRealDeal,” “Logger,” “David Cohen,” “Marc Chapon,” “UserL0ser,” “Spdrman,” “Dlinch Kravitz,” “Fora Ward,”…
U.K.: Suffolk police publish sensitive info of sexual assault victims online in data protection failure
Why would other victims ever come forward and report their assaults when they cannot trust the police to protect their reports? This is an appalling breach, and an “investigation” isn’t going to undo any harm that has been done. What exactly is going to be done to mitigate harm to the victims of this data…