Resources

A joint investigation by the Office of the Privacy Commissioner of Canada and independent studies from Quebec, British Columbia, and Calgary were made public on Tuesday, concluding a nationwide investigation that first began in June of 2020.

Last week, the Cybersecurity and Infrastructure Security Agency (CISA) added a further 75 vulnerabilities to its Known Exploited Vulnerability Catalog. The Known Exploited Vulnerability Catalog is a list of vulnerabilities in software and operating systems that are known to be exploited in real-world attacks. The list now includes 737 vulnerabilities.

Drug delivery service Injured Workers Pharmacy (IWP) failed to protect the private information of its patients, leading to a data breach, according to a class action lawsuit.

Several healthcare providers reported healthcare data breaches recently, each potentially impacting thousands of individuals. Along with the breaches described in detail below, Capsule, Alameda Health System, and Allaire Healthcare Group recently reported breaches to the Office for Civil Rights (OCR), but further detail was not posted on the provider’s website at the time of publication.

Hacking incidents recently reported as major data breaches by three different types of health sector entities – a children’s hospital, a managed care plan and a government contractor – have in total compromised the sensitive information of more than 1.4 million individuals.

Hackers compromised some online accounts of General Motors Co. customers in April, potentially accessing addresses, phone numbers and other personal information, according to a data breach notice filed with California regulators.

Washington, D.C., Attorney General Karl Racine has sued Meta CEO Mark Zuckerberg for allegedly failing to protect consumer data following the Cambridge Analytica data leak.

Eye Care Leaders suffered unauthorized access to its myCare Integrity EMR offering, impacting at least eight eye care providers and hundreds of thousands of individuals.

In the wake of a massive data breach involving more than half a million Chicago Public Schools students and staff, the district still wants to know why it took its vendor months to disclose the breach.

The Verizon Business 2022 Data Breach Investigations Report (2022 DBIR) examines an unprecedented year in cybersecurity history, and sheds light on some of the leading issues affecting the international cybersecurity landscape.