Tom Ball reports: The names and addresses of 620 people who are said to be FSB officers were published yesterday in what Kyiv said was a huge data breach of the Russian security agency. The Ukrainian directorate of intelligence claimed that the list included the personal details of agents engaging in “criminal activities” across Europe….
CA: North Orange County Community College District updates students and faculty on breach
Add North Orange County Community College District (NOCCCD) to any list you may be Curating of colleges that have suffered breaches. According to a report from the college, beginning on December 7, 2021, an unauthorized individual accessed the networks of both Cypress College and Fullerton College and may have exfiltrated copies of files. The attack…
Lapsus$ found a spreadsheet of passwords as they breached Okta, documents show
Zack Whittaker reports on the Sitel compromise after not previously disclosed documents were obtained by independent security researcher Bill Demirkapi: The Lapsus$ hackers used compromised credentials to break into the network of customer service giant Sitel in January, days before subsequently accessing the internal systems of authentication giant Okta, according to documents seen by TechCrunch that…
Four HIPAA Enforcement Actions Hold Healthcare Providers Accountable With Compliance
Today, the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) announced the resolution of three investigations and one matter before an Administration Law Judge related to compliance with the Health Insurance Portability and Accountability Act (HIPAA) Privacy Rule. Two of these cases are part of OCR’s HIPAA Right of Access…
Oklahoma City Indian Clinic impacted by Suncrypt’s ransomware attack
The Oklahoma City Indian Clinic (OKCIC) serves 20,000 patients from more than 200 different Native American tribes. A note on their website and their Twitter account currently apologizes that due to technological issues, the pharmacy automatic refill line and mail order services will be down for an indeterminate amount of time. The home page of…
IL: Blessing details defenses amid increasing health system cyber-attacks
Ryan Hill reports: Hospitals and health systems are finding themselves in the crosshairs of cybercriminals more frequently. According to third party cybersecurity company Black Kite’s 2021 Third Party Breach report, attacks on healthcare companies accounted for nearly a third of attacks in 2021. Blessing Health information security chief Todd Haverstock said he has seen the number…