DataBreachToday.com

Restoration Completed Days Ahead of Schedule But Still a Lot of Catch-Up Work to Do
McLaren Health says its IT systems are fully restored a few days earlier than expected, following an Aug. 6 ransomware attack that disrupted clinical and administrative operations at its 13 hospitals and other facilities. The Michigan-based entity had expected the recovery to last through August.

Cybersecurity Tech Accord Urges Nations to Reject the Treaty
A coalition of technology organizations says a draft United Nations cybercrime treaty would facilitate crime and is urging nations to reject the treaty. "The best option now is for a majority of the U.N.'s member states to decide not to adopt the convention," said Nick Ashton-Hart.

Acquisition Will Enhance Security Operations, Expand Managed Threat Intel Solutions
Check Point plans to purchase an external risk management vendor led by an Israeli intelligence veteran to boost its SOC and managed threat intelligence capabilities. The proposed acquisition of Cyberint will make it easier for companies to defend against both internal and external cyberthreats.

Hard Drives Slated For Destruction Kept in Open Cardboard Boxes
The FBI had a loose hard disk disposal problem that auditors say put classified information at risk. The bureau, auditor said, has a tracking system for obsolete computers and servers earmarked for destruction - but not for storage media extracted from the computer chassis.

Disruptions Affecting Website, Terminal Information Screens, Baggage Sorting System
Travelers in the Pacific Northwest's busiest airport should travel light and gird for extra levels of frustration in the aftermath of a suspected Saturday cyberattack. The Seattle-Tacoma International Airport said that systems "experienced certain system outages indicating a possible cyberattack."

Why Did it Take So Long to Notify Regulators and Affected Patients?
A small rural Alabama hospital is notifying more than 61,000 patients that their sensitive information was potentially compromised in an October 2023 hacking incident. Why the many months-long delay in notifying regulators and affected individuals?

Activists Raise Concerns Over Privacy and Hostility to End-to-End Encryption
The Saturday evening arrest of Telegram CEO Pavel Durov by French law enforcement agencies thrust the already controversial social media platform further into the international spotlight as Paris authorities said the Russian billionaire will likely remain in custody at least through Wednesday.

Texas Credit Union Only Just Notifying 500,000 Members About May 2023 Data Theft
Fifteen months after a massive supply-chain attack hit users of MOVEit secure file-transfer software, Texas Dow Employees Credit Union has issued a data breach notification pertaining to 500,474 victims, saying it only discovered last month their personally identifiable information got stolen.

Pavel Durov Reportedly Detained For Complicity Over Criminal Use
French media reported Saturday the detention outside Paris of Pavel Durov, CEO and owner of social media network Telegram, reportedly for failing to take steps to curb criminal activity on the platform. The Russian Embassy in France said it has demanded an explanation from the French government.

Why Acquisition Reports Emerge in the Media, and What It Means for Those Mentioned
Companies historically responded to M&A reports with milquetoast statements about "not commenting on rumors or speculation," but aggressive clapbacks have become much more common. Increasingly, executives are willing to attract more publicity by publicly - and vocally - denying acquisition reports.

Australian Insurer Expects Years of Litigation Related to 2022 Hack
Australia's largest provider of private health insurance says it expects to spend a total of AU$126 million, or $84.78 million, over a three-year period to upgrade its IT security. A Russia-based cybercriminal group hacked Medibank in October 2022.

Banking and Housing Policy Groups Call New Cyber Reporting Measures 'Impractical'
A group of banking and housing lobbyists are urging Ginnie Mae to redo its latest set of cybersecurity incident reporting requirements for custodians of mortgage-backed securities, calling the new measures "impractical" and potentially burdensome for many organizations.

Cyberattacks Soar, But Guarding PHI From Break-Ins, Natural Disasters Is Critical
Despite the endless barrage of cyberattacks hitting the healthcare sector, HIPAA-regulated entities must not neglect their duty to protect electronic patient information against physical threats, including burglaries and natural disasters, U.S. regulators said.

Hackers Could Exploit Bug to Manipulate Slack AI's LLM to Steal Data
Chat app Slack patched a vulnerability in its artificial intelligence tool set that hackers could have exploited to manipulate an underlying large language model to phish employees and steal sensitive data. Slack said it was a low-severity bug.

As Banks Combat Fraud, Customers Feel the Strain of Overly Cautious Measures
In today’s AI-driven world, banks are becoming increasingly vigilant, often freezing accounts or demanding extensive documentation at the slightest hint of suspicious activity. Sending money, once a straightforward task, is now fraught with complexity.

Latvian Charged With Serving as Extortion Specialist for Russian-Speaking Group
A Latvian national accused of serving as a Russian-speaking ransomware group's extortion specialist appeared in a U.S. courtroom this week to face a four-count indictment filed against him. Moscow resident Deniss Zolotarjovs, 33, was recently extradited to the U.S. from the country of Georgia.

New Lawsuit Alleges Georgia Tech Submitted 'False' Cybersecurity Score to DOD
The Justice Department intervened in a whistleblower lawsuit against the Georgia Institute of Technology and the Georgia Tech Research Corp. for allegedly failing to implement federally required cybersecurity protections while overseeing sensitive government data.