Senator Ron Wyden, who is possibly the biggest advocate on Capitol Hill for cybersecurity and privacy, laid into UnitedHealth Group’s CEO for their cybersecurity practices. Their practices led to a breach that affected possibly one third of the adults in the US who have health insurance. Senator Wyden also asked the FTC and SEC to […]
Continue reading → [DISPLAY_ACURAX_ICONS]Feds Say ChangeHealth Can File Breach Notice on Behalf of Doctors After All Changing your mind … is a federal agency’s prerogative, apparently. Normally under HIPAA, it is the doctor or hospital that has to file the breach notice and until this week, that was the fed’s (HHS) position for the ChangeHealth breach. However, smarter […]
Continue reading → [DISPLAY_ACURAX_ICONS]Last month in a bit of a crazed hurry, Congress approved the renewal of Section 702 of the Foreign Intelligence Surveillance Act (FISA). Section 702 came out of 9-11 and our lack of intelligence. I know you can’t use government and intelligence in the same paragraph without laughing, but stick with me. But Congress didn’t […]
Continue reading → [DISPLAY_ACURAX_ICONS]While it seems that some companies continue to be clueless and others get fined (and sued) for delaying reporting breaches, the window (and door) is closing rapidly on that. The SEC says that publicly traded companies have 4 days after determining that a breach is material to file an 8-K to notify investors. DoD contractors […]
Continue reading → [DISPLAY_ACURAX_ICONS]DocuFakes on the Rise Hackers have figured out that anything that you do on autopilot is fertile ground for using to hack you. Case in point is Docusign. For some people, they sign so many docusign documents that they operate on autopilot when they see one. The hackers have really good templates, so that helps. […]
Continue reading → [DISPLAY_ACURAX_ICONS]The government is escalating their response to cyber attacks and they are having a little bit of success, but as we have seen recently, that means that they are also going against companies that do not have adequate security. In addition, we have seen that they are going the people in those companies who should […]
Continue reading → [DISPLAY_ACURAX_ICONS]