Collaborate Disseminate
In December 2023, UW’s Fred Hutchinson Cancer Center (“Fred Hutch”) reported a November cyberattack that involved the exfiltration of patient data and attempted extortion of patients. DataBreaches contacted Fred Hutch on December 8 t… Continue reading Fred Hutch notifies more patients of November 2023 attack
Three cheers for the U.K. on this one. Kevin Purdy reports: If you build a gadget that connects to the Internet and sell it in the United Kingdom, you can no longer make the default password “password.” In fact, you’re not supposed t… Continue reading UK makes weak default passwords illegal
The Federal Trade Commission today announced it has finalized changes to the Health Breach Notification Rule (HBNR) that will strengthen and modernize the rule by clarifying its applicability to health apps and other similar technologies and expanding … Continue reading FTC Finalizes Changes to the Health Breach Notification Rule
Erin Schilling reports: Some taxpayers are learning that their data was leaked in the widespread breach by a former IRS contractor that led to the release of former President Donald Trump’s tax returns. Four tax lawyers said they have seen letters from… Continue reading Wealthy Taxpayers Alerted to Leaked Data Years After IRS Breach
Ashley Capoot reports: UnitedHealth Group on Monday said it paid ransom to cyberthreat actors to try and protect patient data, following the February cyberattack on its subsidiary Change Healthcare. The company also confirmed that files containing pers… Continue reading UnitedHealth paid ransom to bad actors, says patient data was compromised in Change Healthcare cyberattack
Ashley Capoot reports: UnitedHealth Group on Monday said it paid ransom to cyberthreat actors to try and protect patient data, following the February cyberattack on its subsidiary Change Healthcare. The company also confirmed that files containing pers… Continue reading UnitedHealth paid ransom to bad actors, says patient data was compromised in Change Healthcare cyberattack
This week, law enforcement from 19 countries severely disrupted one of the world’s largest phishing-as-a-service platform, known as LabHost. This year-long operation, coordinated at the international level by Europol, resulted in the compromise of LabH… Continue reading International investigation disrupts phishing-as-a-service platform LabHost – EUROPOL
Tom Olson reports: A hacking group with ties to the Russian government is suspected of carrying out a cyberattack in January that caused a tank at a Texas water facility to overflow, experts from US cybersecurity firm Mandiant said Wednesday. The attac… Continue reading Cybersecurity firm suspects Russia-linked hacking group behind cyberattack on Texas water facility
Christopher Snowbeck of the Star Tribune in Minnesota is doing some great reporting on the Change Healthcare UnitedHealth Group cyberattack. Yesterday, he did a write-up on a Minneapolis therapy clinic suing Change Healthcare. He reports, in part: Twin… Continue reading Lawsuits mount and cyberattack could cost UnitedHealth Group up to $1.6B this year
Eric Geller reports: As U.S. hospitals struggle to pay their employees amid a cyberattack that knocked out a major payment vendor, a powerful Democratic senator is seizing the moment to push for better security in the sorely vulnerable healthcare secto… Continue reading Prominent US senator sees new momentum for healthcare cybersecurity push