LATEST POST
HHS OCR Settles HIPAA Ransomware Security Rule Investigation with BST & Co. CPAs, LLP
Settlement Marks OCR’s 15th Ransomware Enforcement Action and 10th Enforcement Action in OCR’s Risk Analysis Initiative Source: HHS
Microsoft’s Nuance coughs up $8.5M to rid itself of MOVEit breach suit
The Register reports: Microsoft-owned talk-to-text outfit Nuance has agreed to cough up $8.5 million to settle a class action lawsuit over the sprawling MOVEit Transfer mega-breach – although it admits no liability. The proposed deal [PDF], filed in a Massachusetts federal court last week, would draw a line under litigation brought by individuals who claimed that the company failed […]
Georgia SNAP call center cyberattack tied to incidents in 6 states: USDA
FOX 5 in Atlanta reports: A cyberattack that shut down Georgia’s SNAP (Supplemental Nutrition Assistance Program) call center may not have been an isolated incident. Officials with the United States Department of Agriculture tell FOX 5 that similar attacks have happened in six other states recently. The backstory: On July 28, the Georgia Department of […]
Afghans resettled in UK hit by new data breach
BBC reports: Thousands of Afghans brought to safety in the UK have had their personal data exposed, after a Ministry of Defence (MoD) sub-contractor suffered a data breach. The names, passport information and Afghan Relocations and Assistance Policy (Arap) details of up to 3,700 Afghans have potentially been compromised after Inflite The Jet Centre, which […]
Court upholds FCC data breach reporting rules on telecom sector
CyberScoop reports: A federal court has upheld the Federal Communications Commission’s authority to impose stricter data breach notification regulations on the telecom sector, including requirements that the industry notifies customers when their personally identifiable information is exposed in a hack. In a 2-1 decision, the U.S. Sixth Circuit Court of Appeals concluded that the FCC […]
Canada’s House of Commons hit by cyberattack from ‘threat actor’: internal email
CBC News reports: The House of Commons and Canada’s cybersecurity agency are investigating a significant data breach caused by an unknown “threat actor” targeting employee information. According to an internal email obtained by CBC News, the House of Commons alerted staff on Monday that there was an information breach. It said a malicious actor was […]
Proposed ransomware ban raises underwriting pressure on cyber insurers
Insurance Business Magazine reports: …. Matthew Geyman managing director at Intersys, said the move signals a more rigorous approach to tackling ransomware and could reshape the insurance sector’s handling of cyber risk. “As attackers – often serious organised crime – shift focus to the private sector, insurers must reassess underwriting strategies to ensure organisations demonstrate […]
AT&T Data Incident Settlement Notice: $177 Million Settlement Fund for Eligible Claimants
Kroll Settlement Administration has issued a press release about the settlement in litigation stemming from AT&T data breaches in 2024.