Simon Sharwood reports: Dropbox has said it was successfully phished, resulting in someone copying 130 of its private GitHub code repositories and swiping some of its secret API credentials. The cloud storage locker on Tuesday detailed the intrusion, and stated “no one’s content, passwords, or payment information was accessed, and the issue was quickly resolved.” Read more…
Cybercriminals Responsible For Computer Intrusions Nationwide Indicted For RICO Conspiracy That Netted Millions
Orlando, Florida – United States Attorney Roger B. Handberg announces the partial unsealing of an indictment charging Andi Jacques (41, Greenacres), Monika Shauntel Jenkins (33, Hollywood), Louis Noel Michel (28, Hollywood), Jeff Jordan Propht-Francisque (28, Pompano Beach), Dickenson Elan (39, Clearwater), Michael Jean Poix (31, West Palm Beach), Vladimyr Cherelus (33, Lauderdale Lakes), and Louisaint…
OCR Releases New Recognized Security Practices Video
In recognition of National Cybersecurity Awareness Month, OCR has produced a new video this October for organizations covered under the HIPAA Rules on Recognized Security Practices. Recommended security practices can help organizations improve their ability to safeguard patient information from cyberattacks and better safeguard the health care services we all rely upon. Section 13412 of…
Healthcare provider to incarcerated people discloses breach by data security incident by claims processor
Mediko, Inc. has issued a press release concerning an unintended exposure of protected health information by their third-party claims processor, CorrectCare. According to their notice, on July 6, CorrectCare discovered that two file directories on their server had been misconfigured and were exposing files to the public. The investigation subsequently determined that the exposure occurred…
Hackers selling access to 576 corporate networks for $4 million
Bill Toulas reports: A new report shows that hackers are selling access to 576 corporate networks worldwide for a total cumulative sales price of $4,000,000, fueling attacks on the enterprise. The research comes from Israeli cyber-intelligence firm KELA which published its Q3 2022 ransomware report, reflecting stable activity in the sector of initial access sales…
Twitter’s verification chaos is now a cybersecurity problem
Zack Whittaker reports: Cybercriminals are already capitalizing on Twitter’s ongoing verification chaos by sending phishing emails designed to steal the passwords of unwitting users. The phishing email campaign, seen by TechCrunch, attempts to lure Twitter users into posting their username and password on an attacker’s website disguised as a Twitter help form. Read more at TechCrunch.