David Brown reports: OCS confirms that confidential store sales data from the provincial cannabis distributor was leaked to the public. Following reports online from cannabis retailers in Ontario in April, the OCS [Ontario Cannabis Store] sent out a letter to retailers and licensed producers confirming that the data leak occurred without the OCS’ permission. Although…
Personal details of 21M SuperVPN, GeckoVPN users leaked on Telegram
Waqas reports on a leak spotted by VPNMentor: In total, the database contains 10GB worth of data from companies like SuperVPN, GeckoVPN, and ChatVPN which is now available for free download on several different Telegram groups. On May 7th, 2022, a database containing the personal details and login credentials of 21 million users was leaked…
Cybercriminal Charged with Unauthorized Computer Intrusion, Securities Fraud, Wire Fraud and Other Crimes
A criminal complaint was unsealed today in federal court in Brooklyn charging Idris Dayo Mustapha, a citizen of the United Kingdom, with computer intrusion, securities fraud, money laundering, bank fraud and wire fraud, among other offenses. The charged crimes stem from a variety of alleged criminal conduct between 2011 and 2018 in which Mustapha gained…
OCR: Current Fines Too Low to Spur Compliance; Agency Also Seeks Funding Boost, Injunctive Relief
Theresa Defino reports: Compared to other agencies, the HHS Office for Civil Rights (OCR) is a little fish in the big federal pond, but it has an outsize effect on HIPAA covered entities (CEs) and business associates (BAs). And, if Congress agrees, its impact would expand significantly in the coming months. As part of its…
Sheffield nurse Paul Grayson sentenced to 12 years for covert filming of hospital patients and staff
A nurse who “grotesquely breached” his position of trust when he covertly made indecent videos of staff and patients at a hospital in Sheffield has been jailed. Some of Paul Grayson’s victims were unconscious and recovery after surgery when he filmed up their gowns at the Royal Hallamshire Hospital. He also installed cameras in the hospital toilets…
Omnicell reveals ransomware incident in SEC filing
From their May 9 10-Q filing: Our IT systems and third-party cloud services are potentially vulnerable to cyber-attacks, including ransomware, or other data security incidents, by employees or others, which may expose sensitive data to unauthorized persons. On May 4, 2022, we determined that certain of our information technology systems were affected by ransomware impacting…