Privacy | SC Media

Privacy

Privacy in critical care after telehealth demands jump

As coughs and body aches drive anxious Americans to telemed services in record numbers, relieving the burden on medical facilities stressed to breaking with COVID-19 cases, the subsequent relaxation of privacy requirements puts them at risk of PHI compromises, cyberattacks and privacy violations. The shift to online medicine has resulted in the dissemination of a…

VPNs: Not a cybersecurity slam dunk for telecommuters in the age of COVID-19

CISOs and cybersecurity teams around the world are watching their threat surface multiply as millions of staffers find themselves working from home for the first time in order to help constrain the spread of Coronavirus. The removal of these people from the safe and controlled working environment found in their offices and tossing them into…

CrowdStrike report: In a first, majority of attacks in 2019 were malware-free (video)

CrowdStrike on Tuesday released its annual Global Threat Report, and for the first time ever, the number of malware-free attacks that the company observed over the previous year exceeded actual malware-based attacks. The cybersecurity firm, which won Best Security Company at the 2020 SC Awards last week during the RSA Conference, reports that 51 percent…

ConeyIslandHospital

Munson Healthcare data breach exposes PHI

The northern-Michigan based Munson Healthcare group reported several employee email accounts were hacked and being accessed for two and a half months last year exposing PHI. The breach was discovered on January 16, 2020 and the investigation into the incident revealed the email accounts in question were being accessed by an outside source between July…

Clearview AI client list breached

The facial recognition company Clearview AI is informing customers that a hacker stole its entire client list. Clearview AI gained unwanted notoriety earlier this year when it was disclosed that the company was obtaining billions of photos by scraping the internet for use by law enforcement agencies. Now the company has sent a notification to…

Experts share new insight on Sandworm APT exploits, BlackEnergy malware

Ring mandating 2FA logins, ceases some third-party activity

Camera doorbell maker Ring is pushing through a new level of security by now making mandatory for all users to implement two-factor authentication when setting up their device. Two-factor authentication previously had been available as an option, but the company said going forward all users must go through this step when accessing their Ring account.…

Pic: Epic Games

Lokibot now using fake Epic Games installer to fool victims

The data harvesting malware Lokibot has again been upgraded by its creators, this time to impersonate a popular online game launcher in order to trick victims into mistakenly downloading the malware. Trend Micro researchers say Lokibot now presents itself as an installer of the Epic Games store. The threat actors used Nullsoft Scriptable Install System…

antivirus

Czech authorities investigating Avast over recent data collection practices

The Czech Republic’s Office for Personal Data Protection (DPA) said in a brief statement today that it has launched a preliminary investigation into Avast Software s.r.o., following reports that the Prague-based antivirus company collected data from users of its free AV product and sold it via a separate business division. “At the moment we are…

Tricky new malware strain, Dyre, skirts detection and steals banking credentials

Metamorfo banking malware spreads around the world

A new variant of the Metamorfo banking malware is on the loose targeting a wider range of financial institutions than the original version tricking the victims into typing in sensitive information which it then steals. Fortinet’s FortGuard Labs captured an example of the newest edition noting that unlike its predecessor, which only aimed at Brazilian…

Next post in Malware