by Craig Silverman, ProPublica This story was originally published by ProPublica. ProPublica is a Pulitzer Prize-winning investigative newsroom. Sign up for The Big Story newsletter to receive stories like this one in your inbox. Series: Zero Trust: Inside Microsoft’s Cybersecurity Failures Investigating how the world’s largest software provider handles the security of its own ubiquitous…
CloudSorcerer hackers abuse cloud services to steal Russian govt data
Bill Toulas reports: A new advanced persistent threat (APT) group named CloudSorcerer abuses public cloud services to steal data from Russian government organizations in cyberespionage attacks. Kaspersky security researchers discovered the cyberespionage group in May 2024. They report that CloudSorcerer uses custom malware that uses legitimate cloud services for command and control (C2) operations and data storage….
Ph: 42 million people possibly affected by 2023 Philippine Health Insurance cyberattack
Vivienne Gulla reports: The records of around 42 million individuals are possibly affected by the 2023 data breach on Philippine Health Insurance Corporation (PhilHealth), according to the National Privacy Commission (NPC). NPC’s Maria Theresita Patula issued the statement during Monday’s oversight hearing of the House Committee on Appropriations regarding the budget of PhilHealth and the…
New Pennsylvania law will offer added protections for victims of data breaches and new reporting requirements
NCPA reports: Harrisburg, Pa. — A new state law will help protect consumers impacted by data breaches. Act 33 of 2024 requires an impacted organization to provide a free credit report and one year of credit monitoring to affected consumers. It also strengthens notification requirements and mandates notification of the Pennsylvania Office of Attorney General if a data…
In: KEM staffers make paper plates out of patient reports; notice issued
Read the following story seen on Business Standard and then tell me what word you would use to describe your reaction. The administration of King Edward Memorial (KEM) Hospital, a civic-run facility, has issued show-cause notices to six staff members following the circulation of a video showing paper plates made from folders of patients’ reports….
Personal and health info leaked from Florida Department of Health
As an update to the Florida Department of Health ransomware attack reported yesterday: On July 2, threat actors known as Ransom Hub had claimed to have exfiltrated 100 GB of files from the state agency. They threatened to leak it if the state did not pay their demands, but Florida law prohibits state agencies from…