Extremely Sophisticated Apple Vishing Cheat Noticed

January 18, 2019

Jan 13, 2019   A sophisticated Apple vishing cheat has been found. Contrary to most phishing attempts that use electronic mail, this cheat used voice calls (vishing) with the calls seeming to have come from Apple. The cheat begins with an automatic voice call to an iPhone that parodies Apple Inc. The caller display demonstrates that the call is from Apple Inc., enhancing the possibility that the call will be replied. The user is advised that there has been a safety breach at Apple and user IDs have been compromised. Users are informed they must stop using their iPhone until the problem has been solved. They are requested to call back Apple support for additional information and a different telephone Read More

Business Associate Ransomware Attack Reported at Blue Cross Blue Shield of Michigan

January 18, 2019

January 12, 2019   A ransomware attack that has probably led to the thievery of plan subscriber’ protected health information has been reported by a business associate of Blue Cross Blue Shield of Michigan. This is the second current data breach affecting Blue Cross Blue Shield of Michigan plan subscriber that experienced in December 2018. Some plan subscribers’ PHI was saved on a laptop computer that was thieved from another business associate at a different time. The latest breach was informed by Austin, TX-based Wolverine Solutions Group, a dealer that supplies business facilities to Blue Cross Blue Shield of Michigan and several other healthcare groups. On September 23, 2018, ransomware was placed on its network that led to the encryption of files Read More

Phishing Website Utilizes Custom Web Fonts to Avoid Identification

January 18, 2019

Jan 11, 2019     Phishers are continuously developing new methods to avoid their websites from being identified. One threat actor is now utilizing custom web fonts to disguise malevolent code on phishing websites. The phishing cheat deceives the main U.S. bank in an attempt to get users to divulge their banking identifications. The website used in the cheat is nicely created, and like several similar cheats, uses thieved patented content to make the website seem genuine. Although on the surface the cheat is just like several others, the threat actors have used a clever technique to avoid detection and make their phishing kit seem benevolent. Custom web fonts – Web Open Font Format (WOFF) files – are used to Read More

Thousands of Choice Rehabilitation Inhabitants Affected by Email Account Breach

January 18, 2019

January 10, 2019 After a worker organized a mail forwarder to transmit electronic mails to a private electronic mail account, Choice Restoration of Creve Coeur, MO has found an illegal person unlawfully logged into that company electronic mail account. The breach happened on July 1, 2018 and the post forwarder was permitted until September 30, 2018. A detailed evaluation of the electronic mail account demonstrated the protected health information of some inhabitants was included in invoicing papers attached to electronic mails that had been transmitted to its allied skilled nursing centers. Extremely confidential information including fiscal data, Social Security numbers, Medicare and Medicaid numbers, birth dates and contact information remained continuously protected. The breach was limited to invoicing data related to Read More

Advertising Expenses Increase 64% After a Healthcare Data Breach

January 17, 2019

Jan 9, 2019   A latest study has investigated the connection between advertising expenses and healthcare data breaches. The study demonstrates hospitals substantially increase advertising expenditure after a data breach. Healthcare Data Breaches Are the most Expensive to Alleviate Healthcare data breaches are the most expensive to mitigate, much higher than breaches in other industry segments. As per the Ponemon Institute/IBM Security’s 2018 cost of a data breach research, healthcare data breaches cost, on average, $408 for each misplaced or thieved record. The expenses are two times, or in some cases nearly three times, those in other industry segments. In addition to the high expenses of alleviating the breaches, the same study verified that the loss of patients to rivals Read More

Mozilla Head Forecasts Enhanced GDPR Implementation in 2019

January 17, 2019

January 6, 2019   Senior Policy Manager and EU Principal for Mozilla, a company known for its point of view on secrecy and open internet, Raegan MacDonald has said that she believes that 2019 will see enhanced resources poured into the implementation of the European Union’s General Data Protection Regulation. In stating to the fact that there has, as of yet been no financial penalties applied under GDPR she said that she supposes this to alter in the very near future. Addressing to TNW she said: “We haven’t seen the big penalties imposed just yet. But I suppose that if 2018 is the year of application, 2019 will be the year of execution.” MacDonald went on to state that she feels the complete Read More

Free Decryptor for Fileslocker Ransomware Developed After Master Key Leaked

January 17, 2019

Jan 5, 2019   A free decryptor for Fileslocker ransomware has been developed after the leaking of the master key for the ransomware on Pastebin. The master key is the key utilized by threat actors to decrypt files that have been encrypted by the ransomware. The post was generated on December 29, 2018 and says that the master key, which decrypts the secret key, is “related to V1, V2 version” and that the poster is “waiting for safety workers to create decryption tools.” A free decryptor for Fileslocker ransomware was developed by Michael Gillespie, the creator of MalwareHunterTeams’s ID Ransomware – A tool that can be utilized to decide what ransomware variation has been used to encrypt files. Amusingly, a Read More

Irish Data Protection Commission Spokesperson Notifies Organization will ‘Use Full Powers’ in 2019

January 17, 2019

January 4, 2019   A spokesperson for the Irish Data Protection Commission (DPC) lately disclosed in an interview that his organization will be applying the General Data Protection Regulation (GDPR) law much more strictly in 2019. Head of Communications with the DPC, Graham Doyle, was addressing to TNW when he said that GDPR obviously had a huge effect in 2018 as it made people ponder more concerning how their private data is handled. He referred to the growing amount of GDPR occurrences being informed as a sign of this. In 2018 there were 3,500 breach notices and 2,500 grievances, almost two times the 2017 figures. Doyle is pleased with this as the DPC expends substantial resources on awareness because it considers educating Read More

Tribune Publishing Cyberattack Cripples Numerous U.S. Newspapers

January 17, 2019

Jan 4, 2019     A fresh malware attack on Tribune Publishing has initiated interruption to several newspaper print runs including those of San Diego Tribune, the Los Angeles Times, and the west coast editions of the New York Times and Wall Street Journal, amongst others. The Tribune Publishing cyberattack happened on Thursday, December 28, 2018, and stretched all through the Tribune Publishing network on Friday, upsetting the Saturday issues of numerous newspapers that shared the same production platform. Originally, the interruption was attributed to a computer failure, even though the LA Times later verified it had suffered a malware attack carried out by threat actors outside the United States. The Tribune Publishing cyberattack didn’t lead to any subscriber or advertiser Read More

FTC Issues Warning About New Netflix Phishing Scam

January 16, 2019

Jan 3, 2019   The U.S. Federal Trade Commission has issued a warning about a new global Netflix phishing scam that tries to fool Netflix subscribers into revealing their account identifications and payment information. The scam uses a well-tried method to get that information: The danger of account closure because of payment information being outdated. Users are sent a message asking them to bring up-to-date their payment details since Netflix has experienced problems getting the monthly subscription payment. The user is offered with an “Update Account Now” button which they can click to enter their true banking/card information. Nevertheless, clicking the link will not direct the user to the authorized Netflix site, in its place they will be taken to Read More

Ransomware Attack Suffered by Seller of Dental Center of Northwest Ohio

January 16, 2019

January 3, 2019   Notifications are being sent to current and ex-patients of the Dental Center of Northwest Ohio in Toledo to instruct them that some of their protected health information might have been disclosed because of a ransomware attack on one of its sellers. Managed IT service provider, Arakyta, contacted with the dental center on September 1, 2018, to make them aware that a safety breach on a server hosting some dental center systems. With the assistance of third-party computer experts, the dental center realized on November 7, 2018, that an unknown, illegal person had logged on to the server and had possibly seen or copied patient data. No proof of data theft was found and no reports have Read More

Flowers Hospital Data Breach Resolution Approved by Judge

January 16, 2019

Dec 30, 2018   A class action data breach court case filed against Flowers Hospital in Dothan, AL, in 2014 has ultimately been resolved. In 2014, a worker of Flowers Hospital stole the private information of patients from the hospital laboratory and utilized the information to file fake tax returns in the names of patients. A deputy sheriff found patient files in the automobile of laboratory worker, Karmarian Millender, during a traffic stop. The inquiry disclosed that Millender had been stealing patient records from the laboratory and had sold the information to tax impostors who filed fake tax returns in patients’ names. Millender pleaded guilty to the theft of patient data and was sentenced to two years in jail. A Read More

27% of Healthcare Companies Have Suffered a Ransomware Attack in the Previous Year

January 16, 2019

Dec 21, 2018   As per a new report from Kaspersky Lab, 27% of healthcare workers said their company had suffered at least one ransomware attack in the preceding year and 33% of those respondents said their company had suffered many ransomware attacks. In its statement – Cyber Pulse: The State of Cybersecurity in Healthcare – Kaspersky lab clarified that up until January 1, 2018, the U.S. Division of Health and Human Services’ Office for Civil Rights has been informed of over 110 hacking/IT-related data breaches that have affected over 500 people. The effect of those breaches can be severe for the companies concerned. Not only can breaches lead to millions of dollars in costs, but they can also lastingly damage the Read More