Dan Robinson reports: Many security breaches involve leaks, but not perhaps in the same way as one revealed by noted security consultant Andrew Tierney, who managed to gain unauthorized access to a datacenter via what he delightfully terms the “piss corridor.” Tierney, who works as a consultant for security services outfit Pen Test Partners, revealed in…
Chinese hackers targeting Russian government, telecoms: report
Jonathan Greig reports: Chinese hacking groups are targeting the Russian government and organizations in the telecommunications industry, according to a new report from cybersecurity company SentinelOne. The report found that there has been a noticeable increase in Russian targeting by suspected Chinese threat actors. Tom Hegel, senior threat researcher at SentinelOne, attributed the targeting to state-sponsored espionage…
Recent Security Incident: Statement from SHI
Over the Fourth of July holiday weekend, SHI was the target of a coordinated and professional malware attack. Thanks to the quick reactions of the security and IT teams at SHI, the incident was swiftly identified and measures were enacted to minimize the impact on SHI’s systems and operations. These preventative measures included taking some…
North Korea is targeting hospitals with ransomware, U.S. agencies warn
Kevin Collier reports: The U.S. government said Wednesday that North Korea is behind a recent strain of ransomware cyberattacks on hospitals and other health care facilities. The warning is the starkest alert to date that North Korea, which the U.S. has long alleged uses its hackers to raise money for state programs like its nuclear weapons…
VCU Health identifies and addresses a 16-year privacy breach
Soap operas are almost always long-running. Privacy breaches should not be, and 16 years is a very long time for a problem to go undetected. But it appears that’s what happened to the Virginia Commonwealth University Health System (“VCU Health”). Last month, VCU Health disclosed that they had recently learned that beginning as early as…
WI: Southwest Health Center notifies individuals whose protected health information was accessed
Southwest Health Center in Platteville, Wisconsin is a non-profit community health provider. Yesterday they issued a notice about a data security incident they first discovered on January 11 that reportedly impacted certain systems. An investigation determined that an unauthorized party accessed or acquired the personal and protected health information of some current and former employees,…