Top Stories
Ransomware impacts over 200 govt, edu, healthcare orgs in 2022
Ransomware attacks in 2022 impacted more than 200 hundred larger organizations in the U.S. public sector in the government, educational, and healthcare verticals.
Cybersecurity Alert: Hackers Had a Banner Year in 2022. U.S. Regulators Aim to Slow Them Down in 2023.
WSJ year in review on cyberattacks and how the world responded.
Breaches
Scripps Health Reaches $3.5 Million Data Breach Settlement
The San Diego, California-based nonprofit healthcare firm's settlement agreement with plaintiffs behind a class-action lawsuit filed in the wake of an April 2021 ransomware attack was announced Wednesday. The agreement must still receive court approval, and is due to be reviewed in California federal court, where the lawsuit was filed, on April 7, 2023.
Security
Cybersecurity Firms Cut Staff as Fears About Economy, Funding Mount - WSJ
Cybersecurity companies have laid off hundreds of workers in recent months, as concerns mount that an economic downturn will delay funding rounds, and squeeze the amounts investors are willing to commit.
The Worst Hacks of 2022 | WIRED
Here's WIRED's look back on the year's worst breaches, leaks, ransomware attacks, state-sponsored hacking campaigns, and digital takeovers.
LastPass Data Breach: It’s Time to Ditch This Password Manager | WIRED
The company hasn't even clarified when the breach occurred. It seems to have been sometime after August 2022, but the timing is significant, because a big question is how long it will take attackers to start “cracking,” or guessing, the keys used to encrypt the stolen password vaults.
Privacy
Feds Clarify Mobile Health App Privacy, Security Reg Issues
U.S. federal regulators beefed up online guidance for developers creating apps that process health data by emphasizing that a multitude of potential regulations could apply to their handiwork.
Europe
Italian Healthcare Group Targeted in Data-Leaking Shakedown
The criminal syndicate on Wednesday said that as part of its attack, it stole "clients personal information, medical cards, financial reports, departments reports" and other types of information. It's already leaked 37GB of stolen data, claiming "this is only about 5% of total data volume" stolen, which would mean it had exfiltrated 740GB of data.
Misc
Early Version of Disney’s Mickey Mouse Will Soon Be Public Property - The New York Times
The version of the iconic character from “Steamboat Willie” will enter the public domain in 2024. But those trying to take advantage could end up in a legal mousetrap.