Commentaries and Analyses

Researcher Releases Data on 100,000 Phishing Attempts to Teach You How to Not Get Hacked

Lorenzo Franceschi-Bicchierai reports: A security researcher who specializes in tracking government hacking attempts published 25GB of data on 100,000 phishing attacks on Monday. Claudio Guarnieri, who works at Amnesty International and has been tracking targeted attacks against dissidents and activists for almost a decade, published the dataset to help other researchers track hackers,...

11 New US School Districts Compromised by Ransomware; 72 in 2019

Security Magazine reports: Eleven new U.S. school districts (comprised of 226 schools) have been compromised by ransomware since late October, says a report by Armor. Since January 2019 to date, Armor has identified a total of 72 school districts and/or individual educational institutions that have publicly reported being a victim of  ransomware.  These attacks have...

Unsecured backup devices continue to be a hot mess

After a few years of headlines blaring mega-numbers of records exposed by misconfigured RSYNC backups, we might hope that we would be seeing fewer errors by now. But it seems that RSYNC errors continue at a high rate, exposing massive amounts of data. This month, part of what I did was look at RSYNC...

Minnesota Blue Cross scrambles to boost cyberdefenses

Joe Carlson reports: Blue Cross Blue Shield of Minnesota is working rapidly to shore up its cybersecurity defenses after an internal whistleblower raised alarm that the state’s largest health insurer had long neglected thousands of important updates. Internal documents show that Minnesota Blue Cross allowed 200,000 vulnerabilities classified as “critical” or “severe” to linger...

UK: 700,000 Hospital Letters Go Missing Since 2011

Spring Hill Insider reports: Thousands of patients may have suffered delays to treatment after it was revealed that the NHS failed to deliver more than half a million sensitive documents to GPs. Test results from biopsies and patient treatment plans were among the thousands of official records that went missing between 2011 and 2016....