Jan Vermeulen reports: Absa has sent a notice to several new clients found to be affected by a November 2020 data leak, when a former employee gave people’s personal information to a platform that sold it to third parties. The former Absa staff member behind the leak was a credit analyst who had access to risk modelling systems…
Ransomware extortion doesn’t stop after paying the ransom
Who would have thought that criminals might lie? Where’s my shocked face? Bill Toulas reports on findings from a survey by Venafi. Here is some of what they found: 83% of all ransomware victims who paid the requested amount were extorted again, twice, or even three times. 18% of victims who paid the ransom still…
CISA Insights: Preparing for and Mitigating Foreign Influence Operations Targeting Critical Infrastructure
HHS Cybersecurity Program has issued an Alert (TLP: WHITE). Executive Summary Malicious actors use influence operations, including tactics like misinformation, disinformation, and malinformation (MDM), to shape public opinion, undermine trust, amplify division, and sow discord. Foreign actors engage in these actions to bias the development of policy and undermine the security of the U.S. and…
North Shore University Hospital notifies 7,614 patients of unauthorized access to personal information
The following is not a new incident. It is just a newly disclosed incident because of a law enforcement-requested delay in disclosure. North Shore University Hospital (NSUH) issued a notice on February 1, 2022 concerning insider-wrongdoing. The notice begins: NSUH learned that a former employee who worked at a medical office may have improperly accessed…
New study reveals the most expensive academic data breaches
Serena Haththotuwa reports: A new study has calculated the most expensive data breaches over the past two years. The research, which was conducted by Surfshark, shows the cost of data hacks for businesses across 11 sectors including the academic, tech, government, retail and finance industries. Surfshark’s list of most expensive data breaches is based on…
MT: Logan Health Medical Center notifying 213,554 about data breach
Logan Health Medical Center in Montana is notifying 213, 543 patients, employees, and business associates after discovering that files with personal and protected health information were accessed without authorization. According to a notification submitted to the Maine Attorney General’s Office, Logan first detected suspicious network behavior on November 22, 2021. On January 5, their investigation…