A California federal court legal action alleges that Google has been tracking smartphone users’ app activity without adequate authorization in breach of the California Consumer Privacy Act. The legal action that was filed in the Northern District of California last...
COVID-19 Phishing Campaign Shut Down by Microsoft
A massive phishing campaign which was being operated in 62 countries has been taken down by Microsoft. First spotted by Microsoft’s Digital Crimes Unit (DCU) in December 2019, this particular phishing campaign was trying to steal the Office 365 credentials of...
Uncertain Future for EU-US Data Transfer as ECJ Voids ‘Privacy Shield’ Agreement
The European Court of Justice has today issued a ruling that voids the existing Privacy Shield agreement for data sharing between the European Union and United States due to the fact that it does not adequately safeguard the private data of European citizens. The...
Sophos Study Suggests: Cost Ransomware Attack Recovery Doubles When Ransom is Paid
Groups that are hit by a ransomware attack may be tempted to pay the ransom to reduce downtime and save on recovery costs, but a survey conducted by Sophos suggests organizations that pay the ransom actually end up spending a lot more that groups who can rescue files...
‘COVID-19 Consumer Data Protection Act’ on the Cards as Senators Announce Proposed Legislation
Last week a group of four four Republican Senators revealed that they are proposing federal privacy legislation that will establish rules in relation to the collation and use of personal information during the Coronavirus pandemic. The group, which includes Roger...
Surge in Brute Force RDP Attacks Globally During COVID-19 Pandemic
Due to the COVID-19 Pandemic, many groups have have to quickly set up remote working capabilities for their staff. As a result of this there has been increased potential for cybercriminals to initiate campaigns. Remote workers have been attacked on an even greater...
Zoom Video Communications Hit with Class Action Lawsuit & Hacking Attacks
Zoom, a video conferencing software application that has experienced explosive growth due to the social distancing measures introduced globally during the COVID19 crisis, has had a class action lawsuit filed against it in the Northern District of California this week...
CCPA & COVID-19 Pandemic
It is important to remember that, despite the wide-reaching and deep impact the the COVID-19 pandemic, the rights of individuals to have their protection respected are as important and relevant as ever. In recent weeks we have see a relaxing on the policing of HIPAA...
Marriott Reports Another Security Breach Impacting 5.2m Guests
The Marriott Hotel Group has revealed that it has suffered its third data breach in just over two years and has impacted the private data of up to 5.2m guests. The hotel group that operates Marriott Hotel, Starwood Hotels released a statement that said uses an...
WHO Experiences Massive Surge in Cyber-attacks During COVID19 Pandemic
Chief Information Security Officer for the World Health Organization Flavio Aggio has revealed that there has been a massive increase in the amount of cyber-attack registered against his group since the COVID-19 Pandemic began. When questioned in relation to the...
Spammers Using Coronavirus COVID-19 to Target Unsuspecting Email Recipients
Hackers, spammers and cybercriminals are always leveraging current events to try and target susceptible Internet, SMS and email users and the coronavirus COVID 19 is no different. In the United States an alerts has been issued by the Indiana Attorney General's Office...
CCPA Could Lead to Changes to Privacy Notice
The California Consumer Privacy Act (CCPA), which became enforceable on January 1 2020 has resulted in may Californian-based businesses struggling to ascertain what they must do to achieve compliance with the new legislation. In addition to this, on February 10, the...
Data Breaches Impacted Around 60% of UK Consumers During 2019
The amount of data breaches that were conducted globally in 2019 was more than in any other previous year, coming in at a total of 7,098 detected breaches. While this might be seen as just a very small in the 7,035 breaches reported during 2018, the rise reported in...
California State Senator Umberg Proposes Stricter Rules for Direct Consumer Genetic Testing Businesses
In California a state senator in California is submitting proposed legislation which would allow for greater direct supervision in relation to direct genetic testing companies to the consumer. Santa Ana Democratic Senator Thomas Umberg has formulated the proposed...
Noticeable Increase in Average Ransomware Payment During Q4, 2019
A newly-published report from the ransomware incident response outfit Coveware indicates that payments completed by ransomware victims grew noticeably during Q4, 2019. The average ransomware payment grew by 200% during Q4, as two of the most prolific ransomware groups...
LockerGoga & MegaCortex Ransomware Attacks Lead to FBI Warning
The FBI has released a TLP:Amber alert as a reaction to a number of cyberattacks involving the ransomware strainsLockerGoga and MegaCortex. The threat actors employing these ransomware variants have been focusing on large enterprises and organizations and normally...
CCPA Legislation becomes Enforceable
From today the Californian Consumer Privacy Act becomes enforceable, state-level legislation that obligates companies to alert users of the intent to monetize their data, and give them a simple way of opting out of this. It governs, and has massive implications for...
More than 100 Dental Practices Infiltrated in Ransomware Attack on Managed Service Provider
A Colorado IT company that dedicates itself providing managed IT services to dental clinic has been infiltrated with ransomware. Via the company's systems, over 100 dental clinics have also been targeted and have had ransomware deployed. The attack on Englewood,...
Upgrading Windows 7 Devices Coming Quickly
Healthcare groups still deploying Windows 7 and Windows 2008 have a very short amount of time left to upgrade the operating systems before Microsoft support will be discontinued. Support for both operating systems will cease on January 14, 2019. As of January 14,...
Medtronic Valleylab Energy Platform and Electrosurgery Products Flaws Identified
Six flaws have been identified in the Medtronic Valleylab energy platform and electrosurgery products, including one fatal flaw that could permit a hacker to obtain access to the Valleylab Energy platform and view/overwrite files and remotely execute arbitrary code....
New York Medical Center Hit $3 Million HIPAA Penalty for Lack of Encryption
The University of Rochester Medical Center (URMC) has been sanctioned with $3 million HIPAA penalty for not encrypting mobile devices and other HIPAA breaches. URMC is one of the biggest health systems in New York State with more than 26,000 staff at the Medical...
OCR Publishes Guidance on Addressing Dangerous Insider Threats
Healthcare groups can create strong defenses to stop cyber criminals from gaining access to sensitive data, but not all threats come from outside the organization. It is also crucial to put in place policies, procedures, and technical solutions to detect and prevent...
FDA Issue Warning on Cybersecurity Vulnerabilities in Medical Devices
Security expert at Armis have discovered 11 vulnerabilities in the Interpeak IPnet TCP/IP Stack, a third-party software component implemented in hospital networks and certain medical devices. The flaws were reported to the DHS Cybersecurity and Infrastructure Security...
Facebook Suspends ‘Thousands’ of Apps
Facebook has taken the move to suspend "tens of thousands" of apps that are in operation on its platform as it continues to try and stem what it suspects is the collection of large amounts of user profile data. This move comes towards the end of a turbulent 2019 for...
PossibleNow Survey Indicates 50% of Companies will not be Ready for CCPA Introduction
The results of a recent survey published by privacy experts PossibleNOW has revealed that more than 50% US companies do not expect to be fully prepared for the introduction of the Californian Consumer Privacy Act when it comes into effect on January 1 2020. 1,500 US...
Change Healthcare Cardiology Devices have Code Execution Vulnerability Identified
A vulnerability has been discovered in Change Healthcare Cardiology, McKesson Cardiology, and Horizon Cardiology devices. The flaw could be target to take advantage by a locally authenticated user to insert files that could allow the attacker to run arbitrary code on...
Widespread Cybersecurity Risk Management Failures at Federal Agencies Identified by GAO
The Government Accountability Office (GAO) has completed a research study of 23 federal bodies and found widespread cybersecurity risk management weaknesses. Federal agencies are targeted by hackers, so it is crucial for security measures to be put in place to...
New Guidance on Securing IoT Devices Published by NIST
The National Institute of Standards and Technology (NIST) has published a new guide for manufacturers of Internet of Things (IoT) devices to assist them is ensuring that adequate cybersecurity measures are in place so that the devices are secure from threats when...
Amazon Facing EU Antitrust Investigation
The European Union's Competition Commission has initiated an official antitrust investigation to ascertain if Amazon is using sensitive data, gathered from independent retailers who use its marketplace, in breach of EU competition legislation. The Commission says it...
NCipher Security survey: Consumers Wary on Medical Device Security
The significance consumers place on the privacy and security of their health information has been reviewed in a recent nCipher Security survey. The survey i question was aimed at 1,300 U.S. consumers and looked into attitudes toward online privacy, the sharing of...
Raise the level of HIPAA Awareness in your organization with Learner-Friendly, Comprehensive and Affordable HIPAA Training.
COMPREHENSIVE HIPAA TRAINING
Used in 1000+ Healthcare Organizations and 100+ Universities
Privacy is key to everything that we do at J Flowers Health Institute. We require the highest data privacy standards in our daily operations between our team members and patients. The HIPAA compliance and cyber security training we provide to our teams with ComplianceJunction creates enormous value for our organization.
Kevin DeLoach
Chief Operating Officer
J. Flowers Health Institute