Nobel Foundation site hit by DDoS attack on award day

Bill Toulas reports: … As revealed, the institution’s site was hit by a DDoS (distributed denial of service) attack which aims to overwhelm a website with high volumes of “garbage” traffic and a large number of bogus connection requests. This action depletes the available server resources and renders the website unable to serve real...

Midland University in Nebraska victim of ransomware attack last January

Add Midland University to any list of secondary educational institutions hit by ransomware.  From their recent notification: On January 18, 2021, Midland discovered that its network had been impacted by a sophisticated malware attack that encrypted certain computer files. Midland immediately launched an investigation, with the assistance of third-party computer forensic specialists, to determine...

AL: NHS Management Discloses Incident from Last May

Sometimes, what looks like an update isn’t actually an update but an initial disclosure. On January 14, the following press release appeared about an Alabama entity. Neither the press release nor the notice on the entity’s website specifically identifies this as a ransomware incident. NHS Management, which manages 50 long-term care and rehabilitation facilities...

The high cost of mishandling data breaches, security reporting for financial services

Karen Hoffman reminds readers of the costs of poor security, reporting, in part: Last month, the U.S. Securities and Exchange Commission (SEC) fined Chase $125 million due to employees’ insecure practices, namely using WhatsApp and personal email accounts to transact official business, thus not adhering to SEC record-keeping requirements. Additionally, under a separate enforcement...

Clara City respiratory therapist reprimanded by state for twice reading patient records without authorization

Linda Vanderwerf reports: A respiratory therapist from Clara City has been reprimanded by the Minnesota Board of Medical Practice for looking at patient records without authorization. In addition to receiving a reprimand, Kurt Lee Koenen of Clara City was ordered to complete courses about compliance with the Health Insurance Portability and Accountability Act. He is also to...

N.Korean internet downed by suspected cyber attacks -researchers

Josh Smith reports: North Korea’s internet appears to have been hit by a second wave of outages in as many weeks, possibly caused by a distributed denial-of-service (DDoS) attack, researchers said on Wednesday. The latest incident took place for about six hours on Wednesday morning local time, and came a day after North Korea...

China Releases Draft Regulations on Network Data Security Management

Hunton Andrews Kurth writes: On November 14, 2021, the Cyberspace Administration of China (“CAC”) released for public comment its draft Regulations on Network Data Security Management (the “Draft Regulations”). The Draft Regulations are intended to implement portions of three existing laws – the Cybersecurity Law (“CSL”), the Data Security Law (“DSL”) and the Personal...

CEO of Cryptsy, a Major Online Cryptocurrency Exchange Company, Indicted for Defrauding Company’s Customers, Destroying Evidence, and Tax Evasion

Miami, Florida – A 17-count indictment was unsealed in federal court in Miami, Florida charging Paul E. Vernon, 48, the founder, operator, and Chief Executive Officer (CEO) of Project Investors Inc., doing business as Cryptsy, with criminal violations for his involvement in a sophisticated theft scheme involving his cryptocurrency exchange. The charges include tax...

DeepDotWeb Administrator Sentenced to 97 Months in Prison for Money Laundering Scheme

Defendants Received Over $8 Million in Kickbacks from Purchases of Contraband on Darknet Marketplaces An Israeli national was sentenced yesterday to 97 months in prison for operating DeepDotWeb (DDW), a website that connected internet users with Darknet marketplaces, where they purchased illegal firearms, malware and hacking tools, stolen financial data, heroin, fentanyl and other...

Canadian man linked to thedarkoverlord sentenced to federal prison for trafficking stolen identities on the dark web

ATLANTA – Slava Dmitriev has been sentenced for access device fraud in connection with his possession and sale of over seventeen hundred stolen identities on the dark web.  Dmitriev, a Canadian citizen, was arrested while on vacation in Greece in September 2020 and extradited to the United States in January 2021. “This defendant profited...