Compiled by: Richard Sheinis, Esq.

LifeBridge Health Reports Data Breach that Could Affect 500,000 Marylanders
Baltimore Business Journal

Baltimore health care system LifeBridge Health has reported a cybersecurity breach that could affect the personal data of more than 500,000 Maryland …

UK iPhone Users Sue Google For $4.3B Over Privacy Violations
Tech Times

Google You Owe Us claims that the company used a piece of computer code that bypassed Apple’s Safari’s privacy security settings. Through its …

Hackers Steal PII and Payment Info of Thousands of California Residents in Company Breach
CyberScoop

CSC discovered “during routine security monitoring,” that an unauthorized third party accessed its network, the notice says. The company says that it …

Chase Bank Sues Landry’s for $20M Over Data Breach
Houston Chronicle

JP Morgan Chase Bank is suing Landry’s for $20 million in costs related to a 2015 credit card data breach affecting several of the Houston-based …

EU Lawmakers to Press Zuckerberg Over Data Privacy
ABC News

European Union lawmakers plan to press Facebook CEO Mark Zuckerberg on Tuesday about data protection standards at the internet giant at a …

Exclusive: EU warns that Facebook’s Cambridge Analytica Crisis is the ‘Tip of an Iceberg’ of Data …
Business Insider

Europe’s top data protection official has warned that the Facebook Cambridge Analytica scandal is just the “tip of an iceberg.” Giovanni Buttarelli, the …

2,500 Students, Alumni and Staffers Affected by University at Buffalo Data Breach
SC Magazine

The school said in a statement login credentials were compromised when an unnamed third-party vendor suffered a data breach. Those involved had …

Greenwich University Fined £120,000 for Data Breach
BBC News

The University of Greenwich has been fined £120,000 ($160,000) by the Information Commissioner. The fine was for a security breach in which the …

When Cybersecurity Becomes an Issue of Life and Death
Networks Asia

… healthcare professionals work is quite complex and fraught with cyber security risks. Healthcare organisations have multiple geographical locations, …

Teen Phone Monitoring App Leaked Thousands of User Passwords
ZDNet

We contacted a dozen people over iMessage, one by one, to confirm their passwords (you can learn more about how we verify data breaches here).

Compiled by: Richard Sheinis, Esq.

Data Breach in San Francisco Exposes Personal Information of Nearly 900 Patients
StateScoop

Nearly 900 patients at two city-run hospitals in San Francisco are being notified that their personal information was exposed in a data breach late last …

$30B Facebook Privacy Suit Headed for Jury Trial
Courthouse News Service

Facebook’s computer program expert, Dr. Matthew Turk, told the court in written opinions that Facebook merely analyzes pixels in face images and …

Google is Being Investigated in Australia Over Alleged Collection of User Data
CNBC

Data privacy advocates said many consumers are unlikely to understand what they agreed to when signing up to use a smartphone. Industry analysts …

I Want My Data Back, Data Back, Data Back: Chili’s Hit by Data Breach
Washington Post

Brinker said Chili’s does not collect Social Security numbers, dates of birth or state identification numbers full date of birth, so that data was not …

Data Breach Affects Dental Patients in Las Vegas Area
Las Vegas Review-Journal

About 3,750 patients of Las Vegas-area dental groups may have been compromised by a data breach. The information of patients visiting any of 19 …

Rail Europe Had a Three-Month Long Credit Card Breach
ZDNet

Rail Europe, a site used by Americans to buy train tickets in Europe, has revealed a three-month data breach of credit cards and debit cards …

Healthcare Data Security Programs Get Short Shrift in IT Budgets
HealthITSecurity.com

Healthcare Data Security Programs Get Short Shrift in IT Budgets … of healthcare organizations have experienced a data breach since the third …

Facebook Suspends 200 Apps Amidst Data Privacy Investigation. And More Could Be Coming
TIME

At least 200 apps have been suspended from Facebook amidst a data privacy investigation launched by Mark Zuckerberg after the Cambridge …

Family Planning NSW Targeted by Hackers with Ransom Demand, Data of 8.000 People at Risk
ABC Online

People who have booked abortions and sought information about … could have had their personal information stolen, after a major data breach at …

Man Charged with Hacking US Government Websites
New York Post

The feds on Thursday busted a California man who allegedly hacked his way into and tampered with computers around the world — including an …

Compiled by: Richard Sheinis, Esq.

Veto Day: Georgia Governor to Decide Fates of Stockbridge, Hacking Bill
Atlanta Journal Constitution

The measure, Senate Bill 315, was backed by Attorney General Chris Carr and other Republicans to give law enforcement officials new powers to pursue hackers who probe computer systems but don’t swipe any data. It was spurred in part by a security researcher who alerted Georgia election officials …

Equifax’s Data Breach by the Numbers: the Full Breakdown
CNET

Equifax is offering a closer look at its massive data breach, which revealed sensitive information on more than half the American population last year. The company released the details Monday in a Securities and Exchange Commission filing, following demands from US senators. The credit-monitoring company, which gathers personal information on people …

Phishing Alert: Hacking Gang Turns to New Tactics in Malware Campaign
ZDNet

Off-the-shelf malware kits and mass phishing campaigns are enabling a small group of Nigerian cybercriminals to conduct hacking campaigns against targets around the world – and the threat they pose to organisations is increasing. The group, dubbed SilverTerrier, isn’t a sophisticated operation, but has access to a number of malware families – including information stealers and remote-access trojans …

Accused Romanian Hackers and Financial Fraudsters Extradited to US
CyberScoop

A pair of Romanians accused of an international hacking and identity theft conspiracy were extradited from Romania to the United States on Friday to face 31 criminal charges in federal court. Teodor Laurentiu Costea, 41, and Robert Codrut Dumitrescu, 40, allegedly installed interactive voice response …

Europe’s Wrongheaded Data Rules
Bloomberg

This month, the European Union will embark on an expansive effort to give people more control over their data online. Known as the General Data Protection Regulation, it’s ambitious, well-intentioned and largely wrongheaded. As it comes into force, Europe should be mindful of unintended consequences — and open to change when things go wrong. No one could say the GDPR lacks purpose …

Massachusetts Senate Passes Data Protection Bill Targeting Consumer Credit Agencies
Data Protection Report

On Thursday, April 26, 2018, the Massachusetts Senate unanimously passed a data breach protection bill that strengthens consumer protections after security breaches involving consumer credit reporting agencies. If passed, the proposed legislation would amend Massachusetts’s current breach notification law. The bill aims to …

UnityPoint Health Hit with Class-Action Lawsuit Over Data Breach
Becker’s Hospital Review

Affected patients were notified of the breach April 16. The lawsuit accuses UnityPoint Health of misleading patients about the stolen information and waiting more than two months to report the data breach to the public and state regulators. UnityPoint Health “misrepresented the nature, breadth, scope, …

Will Blockchain Run Afoul of GDPR? (Yes and No)
Computerworld

As the EU prepares to roll out new data protection regulations this month, concerns are emerging that they could dissuade businesses from rolling out blockchain-based projects because the online transaction technology might innately break the new rules …

Former US Attorney, Bryan Cave Accused of Hacking Cover-Up
Bloomberg Big Law Business

The complaint says Tiversa used the FBI tool to hack a LabMD computer and obtain “a 1,718-page LabMD file containing confidential personal health information.” The company allegedly disseminated the file and reported the alleged data breach to the FTC, after LabMD refused to pay for Tiversa’s …

Student Loan Company Tells 16,500 Borrowers of Data Breach
WPXI Pittsburgh

A student loan services company recently notified 16,500 borrowers that files containing personal data were released to a business that wasn’t authorized to receive them. Access Group Education Lending said in a letter to those affected that the data breach happened on March 23 when one of its vendors sent out files – including borrowers’ names, driver’s license numbers …

Compiled by: Richard Sheinis, Esq.

School District Pays $10000 Bitcoin Ransom After Cyberattack
CBS DFW

A Massachusetts school district was waiting Friday for its computer system to be “unlocked” after it paid a $10,000 bitcoin ransom to hackers following a cyberattack on its system. And despite the nefarious nature of the school system’s lockdown, there is no criminal investigation into the …

Blu Phone Maker Settles with FTC Over Data Privacy
CNET

The company behind a top-selling phone on Amazon has reached a settlement with the US Federal Trade Commission over privacy practices. After security researchers discovered in 2016 that Blu’s phones were sending personal data — including text messages, contact lists and locations — to servers in …

Former UGA Student Indicted for Hacking Professor’s Computer
The Augusta Chronicle

ATHENS, Ga. — A Clarke County grand jury recently indicted a former University of Georgia student for allegedly hacking into a UGA professor’s computer to change his grades. Michael Lamon Williams, 21, was arrested in February on nine counts of computer trespass and 71 counts of computer forgery.

Michigan Man Gets 7 Years for Hacking Jail Computer to Spring Inmate
SC Magazine

Konrads Voits, 27, was sentenced in the U.S. District Court Eastern District of Michigan after pleading guilty last year to one count of damaging a protected computer when he used malware to hack into a Washtenaw County computer in order to change the release date on a county jail inmate. Voits was …

Hackers Targeting Hospital Devices, Healthcare Industry
Hamilton Journal News

While doctors and nurses protect you from deadly viruses, behind-the-scenes hospital crews are shielding their own medical equipment from dangerous data-grabbing computer viruses. Tech experts at Premier Health in Dayton use sophisticated software to monitor and stop hacking threats in real-time, …

Google and Microsoft Ask Georgia Governor to Veto ‘Hack Back’ Bill
CyberScoop

Google and Microsoft are asking Georgia Gov. Nathan Deal to veto a controversial bill that would criminalize “unauthorized computer access” and potentially allow companies to conduct offensive hacking operations. The Georgia General Assembly passed the bill in late March and sent it over to Deal, …

Israeli Hospitals Move to Protect MRI, Insulin Pumps from Cyber Attacks
CTech

Israeli Hospitals Move to Protect MRI, Insulin Pumps from Cyber Attacks. Tel Aviv Sourasky Medical Center and Rambam Healthcare Campus have contracted cybersecurity company Cynerio Israel Ltd. to deploy its technology in their systems. Yoav Stoler 16:4830.04.18. Two of Israel’s general hospitals …

AI Can Bolster or Undermine Healthcare Data Security, Panel Says
HealthITSecurity.com

Kadakia suggested that policy-makers and regulators come up with a broad security framework with specific requirements for healthcare organizations to implement to reduce their risks of a data breach. For example, organizations should be required to implement out-of-band authentication, which is a …

Compiled by: Richard Sheinis, Esq.

Orangeworm Jeopardizes Healthcare Data Security at Large Firms
HealthITSecurity.com

Kwampirs to gain remote access to compromised computers, warned security firm Symantec in a new report released April 23. Orangeworm is targeting healthcare providers, pharmaceutical firms, IT solution providers for healthcare, and healthcare equipment manufacturers. However, the group is also …

Report: Medical Data Breach Could Impact Patients Across Country
Tucson News Now

MONTGOMERY, AL (WSFA) -. Sensitive patient medical records compiled by possibly thousands of doctors may have been compromised, according to data security researcher KrebsonSecurity. Krebs says it recently notified Kansas-based MEDantex, a medical transcription service, to a security issue …

Hospital Takes Aim at Patient Health Data Security with AI tools
TechTarget

It has taken Johnson and his patient health data security team a little more than a year to become that comfortable with Darktrace. Initially, Johnson said, Darktrace “was very mysterious to us because we had never used an AI tool before. It’s a very powerful tool; it’s also very complex. … It would be way …

SEC Issues $35 Million Fine Over Yahoo Failing to Disclose Data Breach
The Verge

Yahoo — or rather, the shell company holding on to its remnants — will have to pay a $35 million fine for failing to disclose a 2014 data breach in which hackers stole info on over 500 million accounts. The US Securities and Exchange Commission announced today that Altaba, which contains Yahoo’s …

Approximately 16K Could Be Affected by UnityPoint Health Cyber-Attack
SecurityInfoWatch

April 20–The personal and health information of approximately 16,000 patients were potentially compromised by a cybersecurity attack on UnityPoint Health, according to a public notice released this week. On Feb. 15, UnityPoint Health discovered a phishing attack had compromised the organization’s …

Dubai’s Careem Hit by Cyber Attack Affecting 14 Million Users
Reuters

DUBAI (Reuters) – Careem, Uber’s main ride-hailing app rival in the Middle East, was hit by a cyber attack that compromised the data of 14 million users, it said on Monday. FILE PHOTO: An employee shows the logo of ride-hailing company Careem on his mobile in his office in the West Bank city of …

Healthcare Data Breaches Now Covered by Arizona Law
HealthITSecurity.com

Under legislation introduced in January and signed into law by Arizona Governor Doug Ducey earlier this month, information about an individual’s medical or mental health treatment or diagnosis by a healthcare professional is now considered “personal information”. Any breach involving that information …

Cyberhacking of Medical Devices a Growing Threat
The Star Online

Imagine your cardiac pacemaker started delivering electrical pulses that are too strong. Or your insulin pump suddenly pumps too much insulin into you. For people who live with an electronic medical aid, the thought that it could be hacked and manipulated is horrifying. How vulnerable are these …

Data Breach Could Impact Some Patients of Medical Lab Chain with Alabama Locations
AL.com

A data breach may have resulted in the exposure of the personal and protected health information of patients of a medical lab chain with multiple Alabama locations. American Esoteric Laboratories announced Friday that it had become aware of a “data security incident” that could impact patients’ data …

‘Cyber Terrorist’ Teen Who Hacked CIA Director John Brennan Sentenced to 2 Years in Prison
Gizmodo

A British teenager who gained notoriety for hacking a number of high profile United States government employees including former CIA director John Brennan and former director of intelligence James Clapper was sentenced Friday to two years in prison. Eighteen-year-old Kane Gamble pleaded guilty …

WEI Mortgage Becomes Latest Victim of Data Breach
IT Security Central

After receiving the reports about the unusual activity, WEI began investigating to verify the security of its network and to determine the nature and scope of the potential breach. The lender said that it engaged third-party forensic investigators, which determined that the company was the target of an email …

US bank Offers Free Identity Protection… While Admitting Potential Data Breach of 1.5mn Clients
RT

Data such as social security numbers, account numbers, PINs, User IDs, passwords, or driver’s license information has not been compromised by the potential breach, according to the bank. The bank told the Wall Street Journal that the information allegedly stolen may have been provided to a “criminal …

Compiled by: Richard Sheinis, Esq.

US, UK Accuse Russian Government-Backed Hackers in Global Cyber Campaign
Reuters

The White House in February blamed Russia for the devastating ‘NotPetya’ cyber attack in 2017, joining the British government in condemning Russia for unleashing a virus that crippled parts of Ukraine’s infrastructure and damaged computers across the globe. U.S. intelligence agencies have …

Meet the Woman Who Leads NightWatch, Google’s Internal Privacy Strike Force
Gizmodo

Since graduating in 2002, she’s earned a PhD at Carnegie Melon in cryptography and worked her way up at Google, where she manages user privacy and tries to keep things from breaking. She’s here to tell a hall of computer science students how she did it—and also how to create privacy-protective …

Former UI Wrestler Pleads Guilty to Hacking Computers to Change Grades
KCRG

DAVENPORT, Iowa (KCRG-TV9) — A former University of Iowa wrestler has pleaded guilty for a computer hacking scheme to cheat on grades. Federal prosecutors said 20-year-old Trevor Graves admitted to repeatedly hacking into the university’s grading system to give himself and five other students …

Health Data Privacy Rears Its Head at Facebook Hearing
HealthITSecurity.com

The bill (HR 2520) would authorize the Federal Trade Commission to enforce data privacy protections requiring providers of internet access service and “edge services,” like Facebook, to give users opt-in and/or opt-out approval rights for the use of, disclosure of, and access to sensitive user information.

Facebook Fuels Broad Privacy Debate by Tracking Non-Users
Reuters

Zuckerberg said on Wednesday under questioning by U.S. Representative Ben Luján that, for security reasons, Facebook also collects “data of people who have not signed up for Facebook.” Lawmakers and privacy advocates immediately protested the practice, with many saying Facebook needed to …

How a Harmless-looking Website Can Hack Into Your Computer, Steal Data
News18

According to the latest Microsoft security updates, there are at least five critical vulnerabilities in your Windows operating system which allows a hacker to get access to your computer by just luring you to visit a website.

Uber’s Massive 2016 Breach Exposed Data On More Than 25 Million Americans
Forbes

Uber was under investigation by the FTC for the earlier breach when the second one took place. In fact, the FTC was still looking into Uber’s “data security practices, including, specifically, the security of Respondent’s Amazon S3 Datastore” relating to the 2014 breach. Apparently, it still didn’t pass muster …

Texas Health Resources Reveals Possible Data Breach, Offers to Help Affected Patients
Fort Worth Star Telegram

Law enforcement personnel told THR officials about the possible data breach in January, but asked them to not notify their patients or the public while they pursued their investigation, according to a news release from the corporation. THR was recently allowed to speak openly about the investigation, …

Oxygen Device Maker Inogen Discloses Customer Data Breach
THE WEEK

The company, which makes portable devices that supply oxygen to patients with breathing difficulties and lung diseases, said some non-public financial information was also leaked after an employee’s email account was compromised. The unauthorized access appeared to have occurred between Jan. …

Compiled by: Richard Sheinis, Esq.

Ransomware Takes Malware Mantle in Verizon Data Breach Investigations Report
ZDNet

The report is based on 53,308 security incidents, 2,216 data breaches and 67 contributors globally. Ransomware started to appear in 2013 and has become the top variety of malicious software and found in 39 percent of cases where malware was identified. In addition, attacks are moving to more …

Hospital CEO Forced to Pay Hackers in Bitcoin Now Teaches Others How to Prepare for the Worst
CNBC

It was a late Thursday in January when hospital administrator Steve Long was notified that his computer systems had just been hijacked by an unidentified criminal group. The hackers gave Long seven days to pay a ransom — or else. It was at the height of flu season, and a winter snowstorm was …

Consumer Reports Reaches $16.4M Settlement in Michigan Data Privacy Case
Insurance Journal

The publisher of Consumer Reports magazine has reached a $16.375 million settlement of a lawsuit claiming it violated Michigan privacy law by selling readers’ subscription and personal data to third parties without their consent. A preliminary settlement of the proposed class-action case against …

Dem Senator to Introduce New Data Privacy Law Amid Cambridge Analytica Scandal
The Hill

All of the bill’s conditions would be enforced by the Federal Trade Commission (FTC). Lawmakers in both chambers will press Zuckerberg on Facebook’s data privacy and data collection practices on Tuesday. The high-profile hearing could have impacts on data regulation for the entire internet industry …

How Blockchain Could Solve the Internet Privacy Problem
Computerworld

Fintech firms, software makers, telecom providers and other businesses have joined forces develop a blockchain-based network that will enable anyone to exchange digital credentials online and without the risk of unintentionally exposing any private data. The companies are part of the Sovrin …

Cyberattack on Indiana Hospital Highlights Increasing Focus on Healthcare Industry by Hackers
newsBTC

Hancock Regional Hospital in Greenfield, Indiana, where Steve Long is the hospital administrator, was hit by a cyberattack earlier this year. Long, in attempts to make sure his patients were safe, paid the hackers four Bitcoin in ransom for the return of the hospital’s stolen information. Now, Long spends a …

Best Buy: We Were Hit By Sears, Delta Data Breach
WLTZ 38 NBC

(CNN) – Retailer ‘Best Buy’ said Friday that some of its customers’ credit card information may have been impacted by a data breach. This is the same breach that sears and delta air lines have already reported to be victim of. Along with best buy, the three all use the same third party firm that provides …

Iran Hit by Global Cyber Attack that Left US Flag on Screens
Reuters

“As a result, we are taking an active stance, and are urging customers, again, of the elevated risk and available remediation paths.” On Saturday evening, Cisco said those postings were a tool to help clients identify weaknesses and repel a cyber attack. Iran’s IT Minister Mohammad Javad Azari-Jahromi …

Singapore Sentences Twitter Hacker Over NFL Breach: Report
Washington Times

Devesh Logendran, 18, was sentenced Thursday to 24 months probation after pleading guilty to 11 charges brought under Singapore’s Computer Misuse and Cybersecurity Act, the nation’s federal anti-hacking law, Yahoo News Singapore reported Thursday. The hacker breached the NFL’s official …

Atlanta Takes Down Water Department Website Two Weeks After Cyber Attack
Reuters

Atlanta takes down water department website two weeks after cyber attack. Laila Kearney. 2 Min Read. (Reuters) – Atlanta took down its water department website indefinitely on Thursday, two weeks after a ransomware cyber attack tore through the city’s computer systems in one of the most disruptive …

Compiled by: Richard Sheinis, Esq.

Security Experts Weigh In On Massive Data Breach Of 150 Million MyFitnessPal Accounts
Forbes

Another day, another data breach. Actually, all data breaches aren’t created equally. I should say, another massive data breach. Urban Armour shared that on March 25 it discovered unauthorized access that exposed or compromised 150 million MyFitnessPal accounts. MyFitnessPal is a popular fitness …

Chrome’s Built-in Scanning Tool is Now Causing a Privacy Uproar
Digital Trends

The built-in version of Chrome Cleanup resides under Settings > Advanced > Reset and clean up > Clean up computer. Click on the arrow, and a new screen appears with a tool for scanning and removing harmful software. Chrome supposedly does this automatically, but you can manually scan for …

The Facebook Data Breach is a Scandal of Our Own Making. Legally, There’s Nothing We Can Do …
NBCNews.com

Facebook users angered by recent privacy scandals involving the social media giant and various consulting firms like Cambridge Analytica may be wondering what legal recourse they have to reclaim their data or protect themselves from data manipulation. Unfortunately, while Facebook’s actions may …

Apple Rolls Out Privacy Features Ahead of GDPR
Computer Business Review

The iPhone and iPad software now feature privacy icons that appear when an Apple feature seeks to use personal data. These icons will be seen as part of setup and the user can notice them in various features. The privacy icons also appear in the latest versions of MacOS computer software and tvOS …

Panera Bread’s Website Exposed Customer Data, Security Expert Says
NBCNews.com

“There is a security vulnerability on the delivery.panerabread.com website that exposes sensitive information belonging to every customer who has signed up for an account to order Panera Bread online,” Houlihan wrote on Aug. 2, 2017. “This shows the customer’s full name, email address, phone …

Baltimore Becomes the Third US City in a Week to be Hacked
WEAA

Privacy. User Data. Facebook. Hacked. Those words and phrases have been all over the news in the past couple of weeks. Just last week, the City of Atlanta’s computer network was hacked and those responsible demanded $58,000 in ransomware to allow the city to regain its systems. Computer repair …

UpGuard’s Cyber Risk Team Reveals How Details of 40,000 Patients Have Been Exposed
Healthcare Global – Healthcare News, Magazine and Website

Hackers are increasingly turning towards the healthcare industry. Patient identifiable data is increasingly valuable and is becoming an important topic for providers on a global scale. The number of healthcare breaches is on the rise as a result of outdated, fragmented systems. The US saw the largest …

Federal Lawsuit Filed Following Alleged CVS Health Data Breach
HealthITSecurity.com

April 03, 2018 – Three plaintiffs filed a federal lawsuit on March 21, 2018, claiming that a CVS Health data breach exposed the PHI of over 6,000 individuals, including revealing the HIV status of the individuals. CVS Health, Caremark LLC (a subsidiary of CVS Health), and Fiserv Solutions LLC were all …

Data breach hits Lord & Taylor’s, Saks 5 Million Credit, Debit Card Records Compromised
USA TODAY

The breach is the latest of nearly two dozen cyber thefts that have rocked online giants such as Yahoo and AOL, credit reporting agency Equifax and large retailers in recent years. In some cases, the information of hundreds of millions of customers was stolen. Among retailers, the hacking of Target …

12 Healthcare Privacy Incidents in March
Becker’s Hospital Review

Numerous privacy incidents at health IT suppliers, hospitals and other healthcare organizations captured public attention last month. … Hackers broke into Baltimore’s computer-assisted dispatch system, which supports the city’s 911 and other emergency calls, causing city officials to revert to manual …

Cities Held For Ransom – Lessons From Atlanta’s Cyber Extortion
Forbes

Atlanta joins a growing number of municipal, state and government-level targets to fall prey to an increasingly complex cyber threat environment. Just as a heating and cooling vendor served as the backdoor to Target’s breach, cities may very well be a backdoor to broader cyber vulnerabilities affecting …

Compiled by: Richard Sheinis, Esq.

Facebook Data Practices Under Investigation, FTC Confirms
CNNMoney

Among other issues, the FTC found Facebook allowed third-party applications to access more user data than they needed to operate. As part of the settlement, Facebook was told to get the “express consent” of users “before sharing their information beyond their privacy settings.” The FTC is reportedly …

Metro Atlanta City Reports its Own Data Breach, Warns Customers
Atlanta Journal Constitution

“Officials recently discovered that on or about March 15, 2018, a city server may have been breached by an outside person or entity,” the Facebook post said. “The data accessed may have included personal information such as Social Security numbers and/or banking information. It does not appear that …

A Cyber Gang Stole $1 Billion by Hacking Banks and ATMs. Now Police Say They’ve Caught the …
Fortune

A Cyber Gang Stole $1 Billion by Hacking Banks and ATMs. Now Police Say They’ve Caught the Mastermind. By David Meyer. March 26, 2018. For the past five years, a gang of hackers known as Carbanak has been targeting banks around the world, stealing well over $1 billion in total. Now, thanks to a …

Doping: UK Agency Says No Data Lost in Weekend Cyber Attack
Reuters

LONDON (Reuters) – Cyber attackers targeted British sport’s anti-doping agency over the weekend without gaining access to any data, it said in a statement on Monday. London-based UK Anti-Doping (UKAD) holds the test details and medical records of thousands of athletes, ranging from soccer …

9 Iranian Hackers Charged in Cyber Attacks on Colleges, Gov’t Agencies
Campus Safety Magazine

The Department of Justice charged nine Iranians on Friday in a massive hacking conspiracy that targeted hundreds of American universities and government agencies. The cyber attack amounted to “one of the largest state-sponsored hacking campaigns ever prosecuted by the Department of Justice,” …

Facebook Stock Drops After FTC Says it’s Investigating the Company’s Privacy Practices
Los Angeles Times

The agency said it can take enforcement action against companies that “fail to honor their privacy promises,” including to comply with Privacy Shield, a framework developed by the European Union and the U.S. Department of Commerce that is intended to protect personal data transferred during …

Mississippi Health Officials Warn of Possible Data Breach
WAPT Jackson

The Mississippi State Department of Health sent letters Monday to clients notifying them that their personal information was unintentionally sent to a contractor working for a government agency. Health information, including names, date of birth, Social Security Number, or lab results were released Jan.

Data Security Key Consideration for Healthcare Blockchain Success
HealthITSecurity.com

“Conceivably, a blockchain-enabled solution would provide innovative design opportunities to harden PII and PHI protection tied to smart contracts, data provenance, optimizing on-chain and off-chain data storage, and data minimization; coupled with individual’s governance over others access to and …

Senate Summons Facebook, Google, Twitter CEOs Over Data Privacy
CNET

Chuck Grassley, the chairman of the judiciary committee and a Republican from Iowa, announced the hearing Monday. Scheduled for April 10, it’s on the “future of data privacy in social media.” More specifically, it will focus on privacy standards for how data is collected by social networks, as well as how …

Finger Lakes Health Pays ‘Ransom’ Over Cyber Attack
Finger Lakes Times

Lara Turbide, Finger Lakes Health’s vice president of community services, said the agency continues to bring systems back online after the cyber attack. She added that FL Health officials appreciate the community, patients, residents, family members and employees for their patience during the incident.

Facebook Accused of Massive Fraud in New Lawsuit Filed by Cook County
Ars Technica

Cook County argues that Facebook, Cambridge Analytica, and the SCL Group, its corporate parent, violated users’ privacy en masse when they violated Illinois laws against fraud. Just over a week ago, The New York Times and The Observer, a British newspaper, broke the story that the British data …

Compiled by: Richard Sheinis, Esq.

Not a Breach, Facebook Says After Suspending Firm That Took 50M Facebook Users’ Data
CSO Online

The claim that this is a data breach is completely false. Aleksandr Kogan requested and gained access to information from users who chose to sign up to his app, and everyone involved gave their consent. People knowingly provided their information, no systems were infiltrated, and no passwords or …

Orbitz Data Breach Exposed 880,000 Payment Cards
Engadget

Orbitz announced today that it has discovered evidence of a data breach. Between October and December of last year, hackers may have accessed consumer data submitted to a legacy website between January 1, 2016 and June 22, 2016. Additionally, Orbitz partner platform data submitted between …

Facebook Stock Sinks After Report of Federal Probe into Data Breach
The Hill

Facebook’s stock price fell deeper Tuesday after reports of expanding U.S. and U.K. probes into its role in the unauthorized use of personal information by a Trump-connected data firm. The social media company has been under fire since the New York Times and The Observer of London reported that …

National Lottery Out of Luck as it Suffers Another Data Breach
The INQUIRER

The national lottery has been breached, again, with parent company Camelot warning millions of players to change their passwords after detecting suspicious activity with online accounts. While Camelot is trying to work out how the hack happened, it did note that only up to 150 accounts out …

OCR Investigating Banner Health’s 2016 Data Breach
FierceHealthcare

… the attack that exposed data for 3.7 million patients at 27 locations, according to year-end financials (PDF) released by the Phoenix, Arizona-based health system. Banner says it is cooperating with the investigation, but OCR has said the health system’s initial responses to questions about past security …

Breach! Walmart Exposed Personal Data of 1.3 Million US Shoppers
Komando

Another huge data breach was recently detected by security firm Kromtech. The breach exposed personal data of more than 1.3 million consumers from both the U.S. and Canada. When the exposure was discovered, it was thought to be information compiled by Walmart. That’s because that data was …

How to Control What People Can See About You on Facebook
CNBC

You can manage your own by tapping the drop-down arrow on the top-right of Facebook, choosing “Settings” and then selecting “Privacy.” Here, you can control who sees your posts, your phone number, your friend requests and more. Consider changing these settings so that only you can see this data.

Alabama Data Breach Notification Act Accounts for Medical Data
HealthITSecurity.com

Nebraska also made moves earlier this year to improve its data breach notification process. The Nebraska legislature unanimously passed a bill that amended sections of the Credit Report Protection Act and the Financial Data Protection and Consumer Notification of Data Security Breach Act of 2006.

Hacker Launches Public Mineable Blockchain THOUGHT For ‘AI Superhighway’
Forbes

Andrew Hacker, CEO and founder of Thought, commenting on the background to the initiative said: “In the few past decades, humans have …. compute layer through the Fabric; (2) Fabric Layer – Thought software abstraction; and (3) Compute Layer – All computer resources that are joined to the network.