LATEST POST
Cybersecurity tips to travel safe
In June of this year, the Oklahoma Office of Management and Enterprise Services published some cybersecurity tips for travelers. With Christmas travel coming up for many people, we thought this might be a good time to share them here: 1. Use a VPN (virtual private network): A VPN encrypts and converts data on public Wi-Fi […]
Apple: 2.5B Records Exposed, Marking Staggering Surge in Data Breaches
Dark Reading reports the findings of an Apple-commissioned study supports the adoption of end-to-end encryption to protect sensitive data from theft or misuse: In 2021 and 2022, data breaches exposed a staggering 2.6 billion personal records — some 1.5 billion of them last year alone. That number will likely be even higher in 2023 if […]
23andMe updates user agreement to prevent data breach lawsuits
You have a massive data breach from a credential stuffing attack that affects millions of users’ sensitive genetic information, and then you change your terms of service to make it harder for people to sue you in the event of a data breach? How will that go over with the public and potential users? Bleeping […]
AlphV (BlackCat) leak site reportedly taken down by law enforcement
DataBreaches.net reports that RedSense has confirmed that the disappearance of AlphV’s (BlackCat’s) leak site on the dark web yesterday was due to law enforcement action. Law enforcement has not issued any press release as yet. Read more at DataBreaches.net.
FBI explains how companies can delay SEC cyber incident disclosures
The Record reports: The FBI has published guidance on how companies can request a delay in disclosing cyber incidents to the Securities and Exchange Commission (SEC). The document is a followup to new rules that the SEC approved in June requiring companies to quickly disclose “material” cybersecurity incidents and share the details of their cybersecurity risk management, […]
CarePointe ENT Settles HIPAA Lawsuit with Indiana Attorney General
The HIPAA Journal reports: In late September 2023, Indiana Attorney General Todd Rokita filed a lawsuit against CarePointe ENT over a ransomware attack and data breach that affected 48,742 individuals. A settlement has been reached that will see CarePointe pay $125,000 to resolve alleged violations of the Health Insurance Portability and Accountability (HIPAA) Act and […]
Russian hackers accused of targeting U.S. intelligence community with spear phishing campaign
CBS reports: Russia-based hackers conducted a sophisticated cyber campaign against American intelligence officials, including contractors at the State and Defense Departments, as part of an international operation that included NATO members and Ukraine, the Justice Department alleged Thursday. Prosecutors accused an officer in Russia’s Federal Security Service (FSB) and another co-defendant of carrying out a […]
Nine Prime Healthcare hospitals affected by MOVEit breach
CBIZ KA is a third-party vendor for Prime Healthcare that was affected by the MOVEit breach. They have issued the following notice: CBIZ KA, a third-party vendor for Prime Healthcare (Prime), discovered a security incident involving CBIZ’s use of MOVEit Transfer software, which has recently reported a security vulnerability. Prime takes the responsibility of safeguarding […]