Yesterday, Karakurt threat actors added the Methodist McKinny Hospital in Texas to their dark web leak site. They listed the hospital as a “pre-release,” which is their way of putting pressure on a victim — or trying to put pressure on a victim — to pay so their data is not leaked or auctioned off….
New York Becomes First State to Require CLE in Cybersecurity, Privacy and Data Protection
By Hunton Andrews Kurth’s Privacy and Cybersecurity On June 10, 2022, New York became the first state to require attorneys to complete at least one credit of cybersecurity, privacy and data protection training as part of their continuing legal education (“CLE”) requirements. The new requirement will take effect July 1, 2023. The New York State…
GA: Hacker disrupts systems at Forsyth County medical office
On July 25, Forsyth County deputies responded to reports that the computer system of a medical office had been hacked. According to a report, a practice representative told deputies they had been alerted by community partners that suspicious emails were being sent out through the practices email system. Read more at Appenmedia.com The news report…
Ca: St. Joe’s contacting 230 patients whose health records were faxed to wrong people
Sebastian Bron reports: About 230 patients at St. Joseph’s Healthcare Hamilton had their health records recently faxed to the wrong person in what the hospital attributed to an “error.” St. Joe’s said in a release Friday that the misdirected faxes — which occurred between 2020 and 2021 — came to light after a comprehensive review…
Disrupting SEABORGIUM’s ongoing phishing operations
From Microsoft’s Blog: The Microsoft Threat Intelligence Center (MSTIC) has observed and taken actions to disrupt campaigns launched by SEABORGIUM, an actor Microsoft has tracked since 2017. SEABORGIUM is a threat actor that originates from Russia, with objectives and victimology that align closely with Russian state interests. Its campaigns involve persistent phishing and credential theft…
Alberta OIPC’s 2022 PIPA Breach Report – Trends and Key Takeaways
John Cassell, Imran Ahmad,and Miranda Sharpe of Norton Rose Fulbright write: On July 27, 2022, the Office of the Information and Privacy Commissioner of Alberta (OIPC) released its 2022 PIPA Breach Report.[1] The report analyzes the nearly 2,000 breach reports[2] received by the OIPC during the ten year period since reporting was mandated in Alberta under…