Privacy, Data Security, Breach

More stolen DC Health Link data exposed

CyberScoop reports that over 1,800 unique data entries belonging to Congress members, family, and staff that were stolen from the DC Health Link breach have been leaked by the threat actor dubbed "Denfur" on Sunday. Hundreds of names across 20 or more foreign embassies and other employers were also included in the exposed dataset, with Denfur warning that more data from other databases will be leaked in the future. Such data theft was facilitated by a compromise of an exposed database that did not require any verification, according to Denfur, who noted that the database may have been exposed 18 months prior to the breach. Breach response is still ongoing, said a source close to the matter, who added that the threat actor had to be familiar with the software before compromising DC Health Link. Moreover, only 21 current Congress members had their sensitive data exposed as a result of the incident, noted two senior congressional aides.

Related

HIPAA updated to include more robust reproductive health data privacy protections

The Department of Health and Human Services has introduced updates to the Health Insurance Portability and Accountability Act that would prevent healthcare organizations, doctors, and insurers from providing protected health information to state prosecutors in a bid to bolster abortion providers' and patients' privacy protections, according to The Record, a news site by cybersecurity firm Recorded Future.

Senate OKs Section 702 reauthorization bill

Approval has been given by the Senate to legislation that would extend Section 702 of the Foreign Intelligence Surveillance Act for another two years, which headed to the desk of President Joe Biden just minutes after the surveillance law expired, reports CyberScoop.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.