Bloomberg News reports: China may require a cybersecurity review for companies holding data that plan to go public in Hong Kong, if it’s decided that the listing will potentially have an impact on its national security. The draft rule, published by China’s cyberspace regulator on Sunday, didn’t specify how the regulators will define if a…
VA: Hundreds of parents, students, staff at risk of identity theft as personal records found tossed on floor at Old Pulaski Middle School
Kelsey Jean-Baptiste reports: Concerns about confidential records being found thrown on the ground of the Old Pulaski Middle School have many worried. Hundreds of students, teachers, and staff are now at risk of having their private information stolen. Pulaski School superintendent, Dr. Kevin Siers says the documents date back to the 1970s. In pictures given…
Data of Lister fertility clinic patients and other medical practices compromised by ransomware attack on third-party vendor
Jay Jay reports: In a letter sent to about 1,700 patients, Lister Fertility Clinic said that a ransomware attack on Stor-a-file Limited, a firm that scans medical records for the clinic, compromised the sensitive information of patients. […] The document management firm said that the ransomware attack affected 13 organisations, six of them in the healthcare sector….
U.S. Accuses Russian of Money Laundering for Ryuk Ransomware Gang
Robert McMillan and Kevin Poulsen report: A Moscow entrepreneur was detained during a vacation abroad this month and is now facing extradition to the U.S. on charges that he helped a notorious Russian ransomware group launder payments. The case marks the first arrest in connection with the Ryuk ransomware group, which gained notoriety with a string…
Congress Mulls Ban on Big Ransom Payouts Unless Victims Get Official Say-So
Lisa Vaas reports: A U.S. lawmaker has introduced a bill – the Ransomware and Financial Stability Act (H.R.5936) (PDF) – that would make it illegal for financial firms to pay ransoms over $100,000 without first getting the government’s permission. The legislation was introduced on Wednesday by the top Republican on the House Financial Services Committee, North Carolina…
Transavia airline fined for weak security practices that led to data breach
Catalin Cimpanu reports: The Dutch Data Protection Agency has levied a €400,000 ($455,000) fine today against Transavia, a Dutch airline that operates low-cost routes across Europe, for a security breach that allowed a hacker to steal the personal details of more than 83,000 passengers. The fine pertains to a security breach that Transavia publicly disclosed in February…