Tagged With "exposed"
Topic
Cybersecurity News
The average American has had their personal data stolen or exposed at least 4 times in 2019, according to new research published by Interest Research. - The finance vertical is suffering from a 238% increase in cyberattacks during COVID- 19 pandemic according to research published by VMware Carbon Black Security. - Nebraska Medical Center of Omaha, NE notified 1311 patients that their PHI was exposed after an employee illegally accessed - Sophos Security reports following on ransomware: o...
Topic
Cybersecurity Update
- TV celebrity Scott Disick, father of 3 children with Kourtney Kardashian, has filed a lawsuit against All Points Lodge Rehab in Edwards, Colorado for a HIPAA breach. o He reportedly had recently checked himself into the facility for substance abuse, and apparently an employee at the facility may have sold this story to tabloid publications. - Ann and Robert Lurie Children’s Hospital of Chicago, IL notified 4,824 patients that their PHI was illegally accessed by a former employee. - Vanessa...
Topic
Hackers Expose Data of 2.4M UK Cellphone Co. Customers
Hackers Expose Data of 2.4M UK Cellphone Co. Customers British data protection watchdog the Information Commissioner's Office said Monday that it is investigating a hacking breach of mobile phone retailer Carphone Warehouse that may have exposed the...
Topic
Cybersecurity Update
- Tessian Security published research report showing that there is a 47% increase in breach incidents over the last 2 years caused by insiders (existing employees) o Includes both accidental data loss as well as deliberate data exfiltration by negligent or disgruntled employees o Amtrak, headquartered in Washington D.C., informed an unknown number of customers that their info was exposed after hacking incident. - Advanced Intelligence LLC is reporting that operators of NetWalker ransomware...
Topic
Cybersecurity Update
- UPMC (University of Pittsburgh Medical Center) notified 65,000 patients that their PHI was stolen and placed on Dark Web to be monetized. - Privacy Affairs magazine published results of research of what hackers are selling stolen info on the Dark Web. Examples: o Credit card info = $12 to $20 each o Driver’s license = $70 to $550 each o Auto insurance card = $70 each o Facebook account = $74 each o Instagram account = $55 each o Tick Tok account = $15 each - KIPP SoCal, charter schools in...
Topic
Cybersecurity Update
- Hanger Prosthetics & Orthotics, Inc. of Kirksville, Missouri notified 6,033 patients that their PHI was exposed after two boxes of paper medical records were found in a storage facility. - Domestic violence app supported by Dr. Phil suffers data breach o Aspire News, an app designed to assist domestic violence victims, has suffered a data breach with recordings from victims found on unsecured cloud storage. o included more than 4,000 voice recordings along with victim details, home...
Topic
Cybersecurity Update
Cybersecurity Update Bill Gates, Barack Obama, Jeff Bezos, Joe Biden, Kanye West, Elon Musk and many other high profile people had their Twitter accounts hacked. o All their followers received a tweet trying to convince users to send in $1000 in bitcoin - The US National Security Agency is warning hospitals, universities and pharmaceutical companies that Russian hackers are attempting to steal COVID-19 research using email phishing and malware attacks. - Wells Fargo ordered all of its...
Topic
Cybersecurity Update
Cybersecurity Update - Fortified Health Security reports that malicious attackers caused 60% of healthcare data breaches so far this year. - Children’s Hospital of Colorado, located in Aurora, notified 2,553 patients that their PHI was exposed after an email phishing attack. - Interpol reports that from January to April, it detected the following tied to COVID-19 topics: o 907,000 spam messages o 737 malware incidents o 48,000 malicious URLs - Becker’s Health IT magazine reports that...
Topic
Cybersecurity Updates
Cybersecurity Updates Fortinet Security published report on healthcare cybersecurity: o 87% of healthcare providers use IoT devices o 79% are making cloud adoption a strategic priority o 59% of breaches are carried out by internal threats o 60% increase in cyber attacks in past year o 41% of breaches are caused by email o 51% fail to comply with HIPAA Right to Access 83% recognize that HIPAA compliance is not enough to address cyber threats 72% on average comply with HIPAA Security Rule...
Blog Post
MSP & IT, MSSP Industry Notes for September 12th, 2020
MSP & MSSP Industry Notes Sponsored by Arcoa Group ARCOA Group is here to help you successfully manage your IT Asset Disposition process. We help you recover value from retired electronic equipment through responsible methods of reuse and recycling. We ensure proper handling of assets which may contain data, while being environment stewards for assets that have no reuse value and are headed for recycling. We’ve built a robust de-manufacturing process to offer additional options for asset...
Topic
Cyber Security News
Cybersecurity NEWS - Adobe Corp. notified customers that it has fixed 5 critical flaws that would allow hackers to run JavaScript in browers o Would allow hackers to steal info, and move laterally through network - Microsoft notified users that specially crafted Windows 10 themes and theme packs could be used in “Pass-the-Hash” hacking incidents o Could steal Windows account credentials from unsuspecting users - IBM is warning users of new Raccoon malware, which can attack TLS 1.0, 1.1 and...
Blog Post
MSP & IT, MSSP Industry Notes for September 19th, 2020
MSP & MSSP Industry Notes Sponsored by Arcoa Group ARCOA Group is here to help you successfully manage your IT Asset Disposition process. We help you recover value from retired electronic equipment through responsible methods of reuse and recycling. We ensure proper handling of assets which may contain data, while being environment stewards for assets that have no reuse value and are headed for recycling. We’ve built a robust de-manufacturing process to offer additional options for asset...
Blog Post
MSP, IT, & MSSP Industry Notes for September 26th, 2020
MSP IT & MSSP Industry Notes Sponsored by Arcoa Group Why partnering with ARCOA makes sense Electronics Recycling is an important and profitable part of the IT asset lifecycle, but it can be overwhelming with all you already do, varying state regulations, and the limited resources at hand. That’s where ARCOA comes in. When you partner with ARCOA, you get all the benefits of a big company without any of the capital investment. We’ve been doing this since 1989 and have the expertise,...
Topic
Cybersecurity Update
HIPAA & Cybersecurity Updates - The federal Office for Civil Rights (under Department of Health & Human Services) announced following settlements based on HIPAA violation investigations: o $15,000 = All Inclusive Medical Services of California o $70,000 = Northeast Behavioral Health, part of Beth Israel Lahey Health of Massachusetts o $3500 = Dr. Patricia King Psychiatric Clinic of Chesapeake, VA o $10,000 = Wise Psychiatry of Centennial, CA o $38,000 = Housing Works Health of New...
Blog Post
MSP, MSSP & IT Industry Notes for October 4th, 2020
MSP, MSSP & IT Industry Notes October 4th, 2020 Sponsored by Arcoa Group Why partnering with ARCOA makes sense Electronics Recycling is an important and profitable part of the IT asset lifecycle, but it can be overwhelming with all you already do, varying state regulations, and the limited resources at hand. That’s where ARCOA comes in. When you partner with ARCOA, you get all the benefits of a big company without any of the capital investment. We’ve been doing this since 1989 and have...
Topic
Cybersecurity Update
Department of Health & Human Services’ Office for Civil Rights (OCR) stated that so far in 2020, the PHI (protected health information) of 13.7 million patients hasbeen affected by data breaches. Causes: 66% = hacking 21% = unauthorized access/disclosure 7% = theft3% = improper disposal 3% = loss Premera Blue Cross, headquartered in Mountlake Terrace, Washington, paid the largest HIPAA fine in history, when it agreed to pay the feds $6.85 million in regards to breach that exposed PHI of...
Topic
Cybersecurity Update
US District Attorney announced that Richard Liriano was sentenced to 30 months in prison and a $351,850.25 fine for illegally accessing the PHI of patients while he worked for the Hospital For Special Surgery in New York. The City of Odessa, Texas notified an unknown number of citizens that their info may have been exposed in recent breach. People of Praise, located in South Bend, IN, notified an unknown number of members that their info was exposed after hacking incident. The University...
Blog Post
MSP, MSSP & IT Industry Notes for October 11th, 2020
MSP, MSSP & IT Industry Notes October 11th, 2020 Sponsored by Arcoa Group Why partnering with ARCOA makes sense Electronics Recycling is an important and profitable part of the IT asset lifecycle, but it can be overwhelming with all you already do, varying state regulations, and the limited resources at hand. That’s where ARCOA comes in. When you partner with ARCOA, you get all the benefits of a big company without any of the capital investment. We’ve been doing this since 1989 and have...
Topic
Cybersecurity Updates
Cybersecurity Updates Cyber consulting firms are getting dragged into post-breach lawsuits, according to article published by Bloomberg Law. o Accenture Plc’s unit was compelled to provide info during recent suit filed against Marriott International o Was forced to turn over cybersecurity firm Mandiant’s report on a cloud hack in another case. o Class action lawyers claim it could provide “a vivid trail for liability” The feds report that in the month of October, 2020, over 2.1 million...
Blog Post
MSP, MSSP & IT Industry Notes for November 27th, 2020
November 29th, 2020 MSP, MSSP and IT Industry Notes Sponsored by Arcoa Group Why partnering with ARCOA makes sense Electronics Recycling is an important and profitable part of the IT asset lifecycle, but it can be overwhelming with all you already do, varying state regulations, and the limited resources at hand. That’s where ARCOA comes in. When you partner with ARCOA, you get all the benefits of a big company without any of the capital investment. We’ve been doing this since 1989 and have...
Topic
Cybersecurity Updates
HIPAA & Cybersecurity Updates First Impressions Orthodontics/Professional Dental Alliance of Connecticut, notified 23,000 patients that their PHI was exposed after ransomware attack. The Connecticut Department of Social Services notified 37,000 patients that their PHI was exposed after an email phishing attack. The federal government is proposing a new law named “The Internet of Things Cybersecurity Improvement Act”, to increase awareness and standards regarding security of these devices...
Blog Post
MSP, MSSP & IT Industry Notes for December 6th, 2020
MSP, MSSP & IT Industry Notes December 6th, 2020 MSP, MSSP and IT Industry Notes Sponsored by Arcoa Group Why partnering with ARCOA makes sense Electronics Recycling is an important and profitable part of the IT asset lifecycle, but it can be overwhelming with all you already do, varying state regulations, and the limited resources at hand. That’s where ARCOA comes in. When you partner with ARCOA, you get all the benefits of a big company without any of the capital investment. We’ve been...
Topic
Cybersecurity Update
Cybersecurity Updates University of Vermont (UVM) Health claims that the total cost of recent ransomware attack will exceed $63 million. Cedar Springs Hospital of Colorado Springs, Colorado, notified an unknown number of patients that their PHI was exposed after an external drive was stolen. Dental Care Alliance, headquartered in Sarasota, Florida, notified over 1 million patients that their PHI was exposed after a ransomware attack. Dyras Dental Clinic of Lansing, Michigan notified an...
Topic
Cybersecurity Updates
The FBI is reporting that pranksters are hacking into smart devices in the home, accessing the audio and video feeds from the devise (i.e. Alexa, smart TVs, etc.) and then contacting local law enforcement to report a fake crime Hacker than watches the live footage of police response This is called “swatting” Ticketmaster Corp. of New York agreed to pay $10 million to resolve charges stemming from insider-caused breach. Former employee Zeehsan Zaidi pled guilty to the incident T-Mobile Corp.,...
Blog Post
MSP, MSSP and IT Notes Industry January 24th, 2021
January 24, 2021 MSP. IT & MSSP Industry Notes Sponsored by Arcoa Group Why partnering with ARCOA makes sense Electronics Recycling is an important and profitable part of the IT asset lifecycle, but it can be overwhelming with all you already do, varying state regulations, and the limited resources at hand. That’s where ARCOA comes in. When you partner with ARCOA, you get all the benefits of a big company without any of the capital investment. We’ve been doing this since 1989 and have...
Topic
Cybersecurity Updates
Cybersecurity Updates Froedtert Health of Milwaukee, Wisconsin, notified 760 patients that their PHI was exposed after being illegally accessed by a former employee. Hendrick Health of Abilene, TX notified 640,436 patients that their PHI was exposed after ransomware attack. Salem Clinic of Oregon notified 20,000 patients that their PHI was exposed after ransomware attack hit Metro Presort, which processes the clinic’s mail. The Center for Alternative Sentencing and Employment Services...
Blog Post
MSP, MSSP and IT Notes Industry February 7th 2021
February 7th, 2021 MSP. IT & MSSP Industry Notes Sponsored by Arcoa Group Why partnering with ARCOA makes sense Electronics Recycling is an important and profitable part of the IT asset lifecycle, but it can be overwhelming with all you already do, varying state regulations, and the limited resources at hand. That’s where ARCOA comes in. When you partner with ARCOA, you get all the benefits of a big company without any of the capital investment. We’ve been doing this since 1989 and have...
Topic
Cybersecurity Updates
Wall Street Journal published report called “Hospital Suffer New Wave of Hacking Attempts” Great Plains Health of Nebraska’s Christopher Stroud admitted that up to 70,000 attempts per day from hackers trying to get into the hospital’s network Hackers give interview with Cisco researcher: Identified as “Aleks”, and lives in Siberia, Russia In his early 30s Has university level education Uses Mimikatz and PowerShell as tools Is part of the Lockbit ransomware gang Healthcare is his favorite...
Blog Post
MSP, MSSP and IT Notes Industry February 14th 2021
February 14th, 2021 MSP. IT & MSSP Industry Notes Sponsored by Arcoa Group Why partnering with ARCOA makes sense Electronics Recycling is an important and profitable part of the IT asset lifecycle, but it can be overwhelming with all you already do, varying state regulations, and the limited resources at hand. That’s where ARCOA comes in. When you partner with ARCOA, you get all the benefits of a big company without any of the capital investment. We’ve been doing this since 1989 and have...
Topic
Cybersecurity Updates
Cybersecurity Updates With a single update, a popular barcode scanner app on Google Play transformed into malware and was able to hijack up to 10 million devices as reported by Malwarebytes Lavabird Ltd.'s QR code barcode scanner was an Android app that had been available on Google's official app repository for years accounting for over 10 million installs ESET Cybersecurity is reporting that there is a 768% growth in Remote Desktop Protocol (RDP) attacks over the course of 2020 detected 29...
Topic
Cybersecurity Notes
Cybersecurity The federal government, via Department of Health & Human Services’ Office For Civil Rights, is reminding all healthcare facilities that they have until 3/1/2021 to report any breaches that exposed PHI of fewer than 500 patients. Crowdstrike published report warning the healthcare industry of increased cyberattacks from state sponsored hacking gangs located in: North Korea Vietnam Iran Russia China ZDNet is warning of a sharp rise in hacking attacks aimed at colleges and...
Blog Post
MSP, MSSP and IT Notes Industry March 7th, 2021
March 7th, 2021 MSP. IT & MSSP Industry Notes Sponsored by There are two IT FREE leads including in this weeks notes! Arcoa Group Why partnering with ARCOA makes sense Electronics Recycling is an important and profitable part of the IT asset lifecycle, but it can be overwhelming with all you already do, varying state regulations, and the limited resources at hand. That’s where ARCOA comes in. When you partner with ARCOA, you get all the benefits of a big company without any of the...
Topic
Cybersecurity Update
IBM published results of new research on the average total cost of a breach by vertical market: $7.13 million = healthcare $6.39 million = energy $5.85 million = finance $5.06 million = pharma $5.04 million = tech $3.9 million = education Average amount of days before breach is discovered: 329 days = healthcare 324 days = government 283 days = education Security Week magazine reports on ransomware: Ransomware gangs earned at least $350 million in 2020 311% increase YoY $154,000.00 = average...
Blog Post
MSP, MSSP and IT Notes Industry March 14th, 2021
There are two IT FREE leads including in this weeks notes! Arcoa Group Why partnering with ARCOA makes sense Electronics Recycling is an important and profitable part of the IT asset lifecycle, but it can be overwhelming with all you already do, varying state regulations, and the limited resources at hand. That’s where ARCOA comes in. When you partner with ARCOA, you get all the benefits of a big company without any of the capital investment. We’ve been doing this since 1989 and have the...
Blog Post
MSP, MSSP and IT Notes Industry March 22nd, 2021
There are two IT FREE leads including in this weeks notes! Arcoa Group Why partnering with ARCOA makes sense Electronics Recycling is an important and profitable part of the IT asset lifecycle, but it can be overwhelming with all you already do, varying state regulations, and the limited resources at hand. That’s where ARCOA comes in. When you partner with ARCOA, you get all the benefits of a big company without any of the capital investment. We’ve been doing this since 1989 and have the...
Topic
Cybersecurity Notes
FBI published results of research: Total losses from internet crime exceeded $4.2 billion in 2020 In 2019, losses were only $3.5 billion FBI published warning to school systems in the U.S., that they are being targeted by PYSA ransomware, aka Mespinoza. Jean Francois Eap, CEO of Sky Global, was indicted for allegedly participating in a hacking and illegal narcotic distribution ring Sky Global is a provider of custom handsets and a subscription-based end-to- end encrypted messaging app Check...
Topic
Cybersecurity Update
Spectra Logic of Boulder, CO notified an unknown number of customers that their info may have been exposed after ransomware attack. - The University of Pittsburgh Medical Center (UPMC) and Charles Hilton & Associates Law Firm have been sued related to a breach that exposed the PHI of 36,000 patients. - Proofpoint published report on Insider Caused Breaches: o $3.86 million is average total cost of an insider caused data breach o 30% of breaches a involve internal threat actoss 62% =...
Topic
Cybersecurity Updates
Cybersecurity Updates Capital One notified 100 million customers that their info was exposed after former Amazon Web Services (AWS) employee Paige Thompson posted data on GitHub after illegally accessing the info. HealthNet of California notified 1,236,902 patients that their PHI may have been exposed after cyberattack. Check Point Research is warning of a new malware that attacks Android based mobile devices Is in an app on Google Play store that entices users by offering free Netflix...
Blog Post
MSP, MSSP and IT Notes Industry April 19th, 2021
Arcoa Group Why partnering with ARCOA makes sense Electronics Recycling is an important and profitable part of the IT asset lifecycle, but it can be overwhelming with all you already do, varying state regulations, and the limited resources at hand. That’s where ARCOA comes in. When you partner with ARCOA, you get all the benefits of a big company without any of the capital investment. We’ve been doing this since 1989 and have the expertise, certifications, and nationwide resources to get the...
Topic
Cybersecurity Updates
Cybersecurity Updates Mandiant Security Software published results of 2020 breaches 25% increase in ransomware attacks 78% of ransomware attacks had dwell time of 30 days or less 1% had dwell time of 700 days or more 59% were detected internally Tenable Research published report More than 18,000 common vulnerabilities and exposures (CVEs) were reported in 2020, up 6% (this includes Ripple20 and others than impact some brands of printers and MFPs) 46% of breaches in healthcare were from...
Topic
Cybersecurity Update
HIPAA & Cybersecurity Updates - In an internal memo, the US Department of Justice outlined the creation of a new initiative to "pursue and disrupt" ransomware operations. include the takedown of command-and-control (C2) servers used to manage ransomware campaigns legal seizure of "ill-gotten gains" generated by such schemes. The American College of Emergency Physicians, headquartered in Irving, TX notified an unknown number of patients that their PHI may have been exposed after...
Topic
Cybersecurity Notes
The average ransom payment to ransomware operators is now $220,298, up 43% YoY, according to Coveware Security Reverb Inc. headquartered in Chicago, IL, notified an unknown number of users for its musical instrument marketplace website that their info may have been exposed during recent data breach. Sapphire Community Health of Hamilton, MT notified 4,000 patients that their PHI was stolen during recent ransomware attack. Centennial School District of Portland, Oregon notified 6,100 students...
Topic
Cybersecurity Notes
Colonial Pipeline Company, headquartered in Alpharetta, Georgia, was hit by ransomware and forced to shut down its fuel pipeline operation that spans 5,500 miles from Houston, TX to Linden, NJ. This may cause a further spike in gasoline cost. Judge Eldon E. Fallon sentenced Edward Tolliver of New Orleans, LA to 124 months in federal prison for making and selling fake credit cards using stolen identities he acquired from Dark Web sites. SmileDirectClub, headquartered in Nashville, TN,...
Topic
Cybersecurity News
Colonial Pipeline, headquartered in Alpharetta, Georgia suffered possible the most publicized ransomware attack in history: Pipeline was shutdown, causing gas prices to soar and gas stations to run out of gas in AL, AR, DC, DE, FL, GA, KY, LA, MD, MS, NJ, NY, NC, PA, SC, TN, TX and VA Company admitted it paid the hackers $5 million to get password to de-encrypt the network The DarkSide hacking group in Russia was responsible Brownsville Community Health Center of Brownsville, TX notified an...
Blog Post
MSP, MSSP and IT Notes Industry May 10th, 2021
MSP, MSSP, and IT Industry Notes Sponsored by May 10th, 2021 Arcoa Group Why partnering with ARCOA makes sense Electronics Recycling is an important and profitable part of the IT asset lifecycle, but it can be overwhelming with all you already do, varying state regulations, and the limited resources at hand. That’s where ARCOA comes in. When you partner with ARCOA, you get all the benefits of a big company without any of the capital investment. We’ve been doing this since 1989 and have the...
Blog Post
MSP, MSSP and IT Notes Industry May 22nd, 2021
Sponsored by May 22nd, 2021 Arcoa Group Why partnering with ARCOA makes sense Electronics Recycling is an important and profitable part of the IT asset lifecycle, but it can be overwhelming with all you already do, varying state regulations, and the limited resources at hand. That’s where ARCOA comes in. When you partner with ARCOA, you get all the benefits of a big company without any of the capital investment. We’ve been doing this since 1989 and have the expertise, certifications, and...
Topic
Cybersecurity Updates
Cybersecurity Updates The federal Office for Civil Rights reports that it is aware of 34.4 million patient records that have been breaches in the past 12 months. The FBI announced that it has received more than 1 million cybercrime complaints over the past 14 months. Ascension Standish Hospital of Michigan notified an unknown number of patients that their PHI was exposed during a recent breach. Ascension St. Joseph Hospital of Tawas City, Michigan notified an unknown number of patients that...
Topic
Cybersecurity Updates
Cybersecurity Updates Bose Corp. of Framingham, Massachusetts, notified an unknown number of customers that their info was exposed after ransomware attack. $1.37 billion of transactions for stolen information were made in 2020 using the Russian dark web Hydra marketplace, according to Flashpoint Security. Trinity Health System of Logan, West Virginia notified “thousands” of patients that their PHI was exposed after security breach. Clover Park School District of Washington notified an...
Blog Post
MSP, MSSP and IT Notes Industry June 28th, 2021
Sponsored by June 14th, 2021 Arcoa Group Why partnering with ARCOA makes sense Electronics Recycling is an important and profitable part of the IT asset lifecycle, but it can be overwhelming with all you already do, varying state regulations, and the limited resources at hand. That’s where ARCOA comes in. When you partner with ARCOA, you get all the benefits of a big company without any of the capital investment. We’ve been doing this since 1989 and have the expertise, certifications, and...
Topic
Cybersecurity Updates
Cybersecurity Updates CVS Health, headquartered in Woonsocket, Rhode Island, may have inadvertently exposed over a billion PHI, impacting an unknown number of patients. Apparently left a online database on Internet without password protection exposing 204GB of medical data OSF HealthCare, headquartered in Peoria, Illinois, notified an unknown number of patients that their PHI apparently has been posted on Dark Web after being hit by the Xing ransomware hacking group. Coastal Family Health...