A recent survey of 100 large (over 5,000 employees) North American IT firms shows that ransomware actors are making greater effort to recruit insiders in targeted firms to aid in attacks.
EyeMed reached a $600,000 settlement with the state of New York to resolve a number of allegations against its data security program, revealed during the state’s investigation into the healthcare business associate following a 2020 data breach that impacted 2.1 million individuals.
The number of reported data breaches jumped 68 percent last year to the highest total ever, a new report says. According to the Identity Theft Resource Center’s 2021 Data Breach Report, there were 1,862 data breaches last year, surpassing both 2020’s total of 1,108 and the previous record of 1,506 set in 2017.
Memorial Health System in Ohio has confirmed that threat actors accessed or acquired health information tied to about 216,000 patients prior to deploying a ransomware attack in August.
The 2022 Winter Olympics in Beijing, China, don’t begin for a couple more weeks and the event is already clouded in controversy.
The International Committee of the Red Cross has been the victim of a cyber-attack in which hackers seized the data of more than 515,000 extremely vulnerable people, some of whom had fled conflicts.
It was approaching midnight on Sunday and the head of IT at a Florida hospital had a problem. The emergency room of Jackson Hospital, a 100-bed facility on Florida’s panhandle, called to report that it couldn’t connect to the charting system that doctors use to look up patients’ medical histories. Jamie Hussey, Jackson Hospital’s IT director, soon realized that the charting software, which was maintained by an outside vendor, was infected with ransomware and that he didn’t have much time to keep the computer virus from spreading.
A ransomware attack on one of the largest human resources companies may impact how many employees get paid and track their paid time off. Human resources management company Ultimate Kronos Group (known as Kronos) said it suffered a ransomware attack that may keep its systems offline for weeks.
Log4Shell is the name given to a critical zero-day vulnerability that surfaced on Thursday when it was exploited in the wild in remote-code compromises against Minecraft servers. The source of the vulnerability was Log4J, a logging utility used by thousands if not millions of apps, including those used inside just about every enterprise on the planet.
A hacker gained access to the personal information of hundreds of thousands of Planned Parenthood patients in October, the reproductive health-care group’s Los Angeles branch said Wednesday.