KTTN reports: A Missouri man pleaded guilty in federal court to his role in a fraud scheme that utilized the stolen identities of Johnson County, Kansas, government employees to make fraudulent purchases. Michael B. Becher, 40, of Raytown, pleaded guilty before U.S. District Judge Howard F. Sachs to participating in a conspiracy to commit credit…
Ca: Big data breach confirmed at Arnprior Regional Health
Dani-Elle Dubé reports: Arnprior Regional Health says it has been the target of a cyber attack that has breached data dating back to decades ago. The hospital network confirmed the news via an announcement on its website on Thursday, May 19, adding that it had become aware of the attack on its IT system on…
NYC Education Dept. will roll out its own online gradebook after security breach and data hack
Michael Elsen-Rooney reports: The New York City Education Department is planning to roll out its own online grading and attendance system to replace a widely-used platform that was hacked earlier this year, exposing the personal information of nearly one million students. The new system, developed by the agency’s IT team, will launch in beta form…
Vice Society claims to have acquired patient files from Atlanta Perinatal Associates
Attacks on small to medium-sized medical entities continue, as this week’s breach posts unfortunately attest. Today, Vice Society added Atlanta Perinatal Associates in Georgia to its leak site. As they have done in the past, Vice Society did not just add the medical practice with a warning or threat. When Vice Society adds an entity,…
[FLASH] #Conti Officially DisCONTInued
As seen on Twitter: [FLASH] #Conti Officially DisCONTInued Today the official website of Conti #Ransomware was shut down, marking the end of this notorious crime group; it is truly a historic day in the #intelligence community! Look forward to today’s @AdvIntel with extended analysis!@VK_Intel pic.twitter.com/gMSXhlHVSb — Yelisey Boguslavskiy (@y_advintel) May 19, 2022 NOTE: Some…
Department of Justice Announces New Policy for Charging Cases under the Computer Fraud and Abuse Act
The Department of Justice today announced the revision of its policy regarding charging violations of the Computer Fraud and Abuse Act (CFAA). The policy for the first time directs that good-faith security research should not be charged. Good faith security research means accessing a computer solely for purposes of good-faith testing, investigation, and/or correction of a security…