Beacon Health System, the result of a merger of two hospitals in South Bend Indiana announced that their email system was breached and hackers had access to emails between November 2013 and Jan 26, 2015 – about 15 months. While allowing the hackers to roam through your system for 15 months seems long, it, unfortunately, […]
Continue reading → [DISPLAY_ACURAX_ICONS]DC based Blue Cross affiliate CareFirst announced last week that, like other Blues, they had been breached. Information on 1.1 million customers was compromised. The good news is that this breach did not include health information or credit card numbers. CareFirst is the 3rd Blue Cross affiliate to announce they have been hacked recently (the […]
Continue reading → [DISPLAY_ACURAX_ICONS]Mastercard and Target concocted an agreement where Target would pay a fine of $19 million to settle all of the bank’s claims against Target as a result of the 2013-14 breach. This would be separate from an agreement with Visa. Mastercard was not able to get enough banks to agree to it, so the lawsuits […]
Continue reading → [DISPLAY_ACURAX_ICONS]In addition to the traditional ransomware that everyone knows about, the AdultFriendFinder breach I wrote about earlier has the hackers blackmailing users of the site. Now, mSpy clients are being extorted too. Brian Krebs is reporting that hackers are using the mSpy breach to extort iPhone users. Apparently, users who have mSpy installed are asked […]
Continue reading → [DISPLAY_ACURAX_ICONS]CNN and others have reported on the hacking of the adult dating site AdultFriendFinder, where members enter their interests in non-traditional sexual relationships. Over 3 million members “interests” and other information were revealed in the data released so far. According to the site, it has “helped millions of people find traditional partners, swinger groups, threesomes, […]
Continue reading → [DISPLAY_ACURAX_ICONS]Larry Ponemon just released a study that shows that the dwell time – the time between the attacker getting in and the business detecting it is 100-200 days depending on the industry. Many of the respondents said that they are not optimistic about improving this in the next year. Given that, incident response is […]
Continue reading → [DISPLAY_ACURAX_ICONS]