While Change Healthcare continues to try to restore all services following a damaging ransomware attack in February, they now face a new and concerning threat. No Honor Among Thieves On March 4, a threat actor calling themself “notchy” claimed that they had been involved in the attack on Change Healthcare and that their job was […]
Four months after a paper logbook with patient information was discovered missing from a secure area of a clinic at Zuckerberg San Francisco General (ZSFG), the hospital notified patients. A press release issued by ZSFG last week explains that the logbook was discovered missing on December 12 and has not been found. Although there is […]
Older Medicare numbers used Social Security numbers A consulting firm that provides civil litigation support to the U.S. Department of Justice has sent notification letters to 341,650 Medicare members whose information they had been entrusted with. The letter from Boston-based Greylock McKinnon Associates, Inc. reassured recipients that they were not the target the DOJ investigation […]
Bleeping Computer reports that hospitals are being warned about a social engineering trick used by hackers to gain access: The sector alert issued by the Health Sector Cybersecurity Coordination Center (HC3) this week says these tactics have allowed attackers to gain access to targeted organizations’ systems by enrolling their own multi-factor authentication (MFA) devices. In […]
Updated April 4: Omni Hotels subsequently acknowledged that they were hit by a cyberattack. They have published an FAQ on the incident that says most services have been restored. They have not yet determined whether any guest data on their servers was accessed or acquired in the attack. Original article follows: Omni Hotels & Resorts […]
Victim Falsely Prosecuted and Spent Nearly Two Years in Jail and Mental Hospital A former Iowa hospital administrator who lived under a false identity for more than 30 years and caused the false imprisonment of his victim pled guilty today in federal court in Cedar Rapids, Iowa. Matthew David Keirans, age 58, from Hartland, Wisconsin, […]
“It’s not a matter of ‘if.’ It’s just a matter of ‘when,’” people say about data breaches. The same could be said for potential class action lawsuits that follow announcements of big breaches. This week, AT&T is among those who are being sued over a big breach. Bloomberg reports: COURT: N.D. TexTRACK DOCKET: No. 3:24-cv-00757 (Bloomberg Law subscription) AT&T […]
CNN had an exclusive report that is generating a lot of coverage. It begins: Within hours of opposition leader Alexey Navalny’s death in February in a Russian prison, a group of anti-Kremlin hackers went looking for revenge. Using their access to a computer network tied to Russia’s prison system, the hackers plastered a photo of Navalny on the […]
WFAA reports that AT&T has begun notifying about 7.6 million current AT&T account holders and 65.4 million former account holders whose data recently leaked online. The data set includes information such as Social Security numbers. It is unknown if the data “originated from AT&T or one of its vendors,” the company said in a recent […]
A draft of federal cyber incident reporting rules for the Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA) has been posted in the Federal Register. It’s not exactly light reading, weighing in at a whopping 447-page Notice of Proposed Rulemaking. The rules will require critical infrastructure entities to notify the federal government of […]
