Collaborate Disseminate
Zack Whittaker reports: A consumer-grade spyware app has been found running on the check-in systems of at least three Wyndham hotels across the United States, TechCrunch has learned. The app, called pcTattletale, stealthily and continually captured scr… Continue reading Spyware found on US hotel check-in computers
Marianne Kolbasuk McGee reports: More than 100 medical associations and industry groups representing tens of thousands of U.S. doctors and healthcare professionals have banded together to urge federal regulators to hold Change Healthcare responsible fo… Continue reading 100 Groups Urge Feds to Put UHG on Hook for Breach Notices
NJ 101.5 FM reports: A Monmouth County school district hid details about a cyber-attack for over a year. Only now are they revealing student’s sensitive personal data was compromised. Officials at Shore Regional High School District in West Long … Continue reading More than one year later, New Jersey school district reveals data breach with sensitive info
A Russian citizen has been indicted for working as an “access broker” and selling unauthorized access to computer networks, including a victim company in New Jersey, U.S. Attorney Philip R. Sellinger, District of New Jersey. Evgeniy Doroshenko, 31, aka… Continue reading Russian Access Broker “FlankerWWH” Indicted for Cybercrime Activities in New Jersey
Chad Van Alstin reports: The U.S. Department of Health and Human Services (HHS) is launching a $50 million incentive program to encourage hospitals to improve their cybersecurity. Dubbed the Universal Patching and Remediation for Autonomous Defense—or … Continue reading HHS launches $50M security initiative to thwart hospital ransomware
Dorothy Parson McDermott of JacksonLewis writes: On May 1, 2024, amendments to Utah’s cybersecurity and data breach notification law took effect. The state’s cybersecurity and data breach notification law requires an organization that conducts business… Continue reading Utah Updates to Breach Notification Requirements Take Effect
Aaron Nicodemus reports: The Securities and Exchange Commission (SEC) will require broker-dealers and registered investment advisers to adopt written policies and procedures for handling data breaches of customer data and notify affected customers with… Continue reading SEC amends Reg S-P to require data breach notification within 30 days
WebTPA is a medical claims administrator for health insurance and benefits plans. On December 28, 2023, the Texas firm discovered that they had experienced a data security incident involving certain systems on their network. Subsequent investigation c… Continue reading WebTPA Employer Services notifies 2.4 million of April 2023 hack.
Phoebe Taylor-Vuolo, Report for America corps member, reports: Guthrie Lourdes Hospital in Binghamton continues to feel the impact of a recent cyberattack on Ascension, its former parent organization. Ascension said it was hit with a ransomware attack … Continue reading Guthrie Lourdes Hospital still struggling with effects of Ascension cyberattack
The Cybersecurity and Infrastructure Security Agency (CISA) issued an alert on Black Basta this week. The alert was likely released this week because the attack on Ascension that is disrupting that health system has been attributed to Black Basta. The … Continue reading CISA Advisory: #StopRansomware: Black Basta