Security Alerts & News
by Tymoteusz A. Góral

History
#1044 Ransomware attacks may trigger breach notifications
A powerful California congressman is pushing the federal government to treat ransomware attacks on medical facilities as data breaches and require notifications of patients.

The pressure is coming from Rep. Ted Lieu (D-Calif.) and follows comments from officials at the Department of Health and Human Services about the department’s plan to issue guidance to health care organizations about ransomware attacks. The Office for Civil Rights section of HHS, which has responsibility for health information privacy, will provide guidance on how to handle ransomware attacks, and Lieu is eager to ensure that the guidance specifically addresses how ransomware attacks relate to data breach regulations.

Ransomware typically is thought of as a consumer threat, encrypting victims’ files and demanding payments in order to get the decryption key. But more and more ransomware variants are targeting enterprises, as attackers have figured out that forcing large payments from one company is more efficient than squeezing smaller payments out of hundreds of individual victims. The SamSam ransomware variant, which has some worm-like behavior, has been seen attacking businesses specifically. A large-scale ransomware infection on a corporate network can have myriad consequences, but in a health-care organization it can have a variety of privacy and regulatory ramifications, too.
Read more
#1048 Foxit patches 12 vulnerabilities in PDF reader
#1047 YSTS X: The highlights of the COOLEST security conference in Brazil
#1046 Android Trojan malware makes hackers $500,000
#1045 Facebook malware: tag me if you can
#1044 Ransomware attacks may trigger breach notifications
#1043 OWASP Application Security Verification Standard 3.0.1 (PDF)
#1042 Dangerous keyboard app has more than 50 million downloads
#1041 Thirty percent of Android devices susceptible to 24 critical vulnerabilities
#1040 KSN Report: Mobile ransomware in 2014-2016
#1039 A massive financial crime and terrorism database has leaked
#1038 WiFi wave2 gets multi-gigabit, multi-user boost with upgrades to 802.11ac
#1037 Google's 'FASTER' 9000km, 60Tbps transpacific fiber optics cable completed
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12