Manuel Torres and Zhang, Dun of Garrigues write: Shenzhen, the leading financial and production center for China and home of many Chinese internet and tech giants such as Huawei, Tencent and DJI, enacted its regional data protection law, ‘Data Regulation of the Shenzhen Special Economic Zone’ (Shenzhen Data Regulation) on June 29, 2021. Shenzhen Data…
HHS warns entities; patients file potential class action lawsuit over PACS breach
HHS recently issued an alert about a known vulnerability allowing access to some picture archiving communications systems (PACS). The vulnerability had been reported two years ago, and again months later, and there had been updated alerts since then. HHS is advising entities to address this as a priority now if they have not done so…
Malware abuses OBS live-streaming software to record victims’ screens
Catalin Cimpanu reports: Security researchers have uncovered a new malware strain that uses the popular OBS Studio live-streaming app to record and broadcast the screen of its victims to attackers. Named BIOPASS, this malware is a remote access trojan (RAT) coded in Python that was spotted in recent attacks targeting online gambling companies in China. Discovered…
Ten Long Island Residents Charged in Nationwide Identity Fraud Scheme
From the Law Firm Newswire: Thirteen people and three corporations were charged on a 108-count indictment in relation to a nationwide synthetic identity fraud scheme that netted over $1 million from financial institutions. Authorities believe the defendants also amassed a credit limit of hundreds of millions of dollars across the United States. The scam’s alleged…
AU: Cyber-attackers partially knockout Australian education department, while unrelated leak impacts Blackboard Collab users
While New South Wales’ new COVID outbreak is causing problems, it has other problems as well. On July 9, GRC World Forums reported: The New South Wales (NSW) department of education in Australia has deactivated some internal systems after becoming the victim of a cyber-attack. The timing has created considerable challenges for staff as they…
Mint Mobile hit by a data breach after numbers ported, data accessed
Lawrence Abrams reports: Mint Mobile has disclosed a data breach after an unauthorized person gained access to subscribers’ account information and ported phone numbers to another carrier. According to the data breach notification email sent to affected subscribers this weekend, between June 8th and June 10th, a threat actor ported the phone numbers for a…