Stir Friday Recap – Security News from June 2019
Here’s a look back on the top cybersecurity stories from the month of June that were featured in our Stir Friday email newsletter. If you want to get more timely access to these stories, be sure to subscribe to receive our Friday emails with all the key stories from the week.
Cybersecurity Stories from the Past Month
The Oregon Department of Human Services is notifying about 645,000 clients who were affected by a breach in January.
The Department discovered the breach by January 28 and made a public announcement on March 21 (almost two months later). It took another three months to announce that it would notify victims. I don’t know how anyone can justify those timelines. That certainly would not pass GDPR muster.
The authors of GandCrab ransomware are shutting their ransomware-as-a-service portal, allegedly walking away with $150 million.
Ransomware-as-a-service (sheesh!) is merely an extension of DDoS Botnet rentals and Build-Your-Own-Malware kits. Script kiddies have never had it so easy!
Quest Diagnostics Says Up to 12 Million Patients May Have Had Financial, Medical, Personal Information Breached
Quest Diagnostics, one of the biggest blood testing providers in the country, warned Monday that nearly 12 million of its customers may have had personal, financial, and medical information breached.
What is troubling is that Quest made this public via a securities filing, not a normal public statement.
Third party collections firm, American Medical Collection Agency (AMCA), has affected another company, LabCorp, discovering “unauthorized” activity on its web payment page.
We’ve had our share of ‘déjà vu’ here at Stir Friday, but this is crazy. If you want to read the securities filing from LabCorp, you can find it here.
The Australian National University is in damage control after discovering a major data breach with a “significant” amount of staff and student information exposed.
Technical details about the breach are thin, so stay tuned for more information.
Subscribe for More Insights and Details
If you’d like to receive the full breakdown and commentary on the biggest cybersecurity stories in the news, subscribe to the Stir Friday newsletter, delivered straight to your mailbox.