Feds Say ChangeHealth Can File Breach Notice on Behalf of Doctors After All Changing your mind … is a federal agency’s prerogative, apparently. Normally under HIPAA, it is the doctor or hospital that has to file the breach notice and until this week, that was the fed’s (HHS) position for the ChangeHealth breach. However, smarter […]
Continue reading → [DISPLAY_ACURAX_ICONS]Given the announcement every day of a new breach, that CISO’s confidence is growing is a bit strange. I think it is more how the media is viewing the numbers. 70 percent of surveyed CISOs feel at risk of a material cyber attack over the next 12 months. That is up from 68 percent last […]
Continue reading → [DISPLAY_ACURAX_ICONS]First a little background. One of the main uses of cryptocurrency – not the only use – is to monetize crime. Most ransomware payments are done via cryptocurrency. There are other, legitimate uses, but they are dwarfed by the illegal uses. To the tune of tens of billions of dollars of criminal activity a year. […]
Continue reading → [DISPLAY_ACURAX_ICONS]If you have been reading this blog then any conversation about supply chain risk is not news to you. Verizon, which publishes the well respected annual data breach investigations report says that supply chain breaches are up 68 percent from 2022. The number is still suspiciously low to me, however. Most people think of Verizon […]
Continue reading → [DISPLAY_ACURAX_ICONS]Cyberattack Ramifications: Chain Closes ALL STORES to Contain Attack Canadian pharmacy chain London Drugs has closed all stores to contain a cyberattack. While many stores stop accepting online orders or credit cards after a cyberattack, it is very rare to see a company stop doing business until further notice. However, they have not notified authorities […]
Continue reading → [DISPLAY_ACURAX_ICONS]Shoddy security practices. Short of cash. Lack of personnel to deal with threats. Outdated equipment connected to the Internet. Weak passwords. CISA and the FBI say these are just some of the issues that critical infrastructure operators are facing. Anti U.S. (pro-Russian) hackers are intensifying attacks on critical infrastructure such as water, wastewater, dams, energy […]
Continue reading → [DISPLAY_ACURAX_ICONS]