Cybersafety Sentinel March 2022 Week 4
Claudiu’s Top Post
Why would anyone want to gain access to your company’s ChatGPT accounts?
Because they know that in the absence of regulation and policy enforcement, users are likely to enter sensitive information, intellectual property details, personal data and strategically important information.
Former Apple employee charged with defrauding US$10 million
A former Apple employee has been charged with defrauding the tech giant out of more than US$10 million by taking kickbacks, stealing equipment and laundering money, federal prosecutors said. Read More
A mother’s fight for facts about her daughter’s death could rewrite the Access to Information Act
A bereaved mother’s long battle to learn more about her daughter’s death has led the federal information commissioner to recommend changes to Canada’s access to information legislation on “compassionate grounds.” Read More
Canada’s National Research Council detects ‘cyber incident,’ investigation underway
Canada’s National Research Council (NRC) detected a “cyber incident” on March 18, two months after Global Affairs Canada experienced a similar disturbance. Read more
The dark side of Discord for teens
In September, the mother discovered the 16-year-old was also using the audio and chat service to message with someone who appeared from his profile picture to be an older man. The stranger, who said he lived in England, entered a group chat that included her daughter and members of the band, according to the mother. They struck up a friendship in a private thread. He asked for nude pictures; her daughter obliged. Read More
100,000 Android users downloaded a malware app that steals Facebook accounts
Even when you download a mobile app from an official source, you should be careful before you give them any personal information. Google is always working to ensure that malicious apps don’t make their way on to the Google Play store, but some still sneak through. These apps often look legitimate, and one managed to fool thousands of Android users in recent weeks. The app contains an Android trojan known as Facestealer. Read More
Russia’s invasion of Ukraine may spur more cyberattacks in Canada, security experts warn
The Russian invasion of Ukraine isn’t just on the ground — it’s also online, and cybersecurity experts warn it could have an impact on Canadians. Read More
Scripps Health Faces Lawsuit Over Kronos Data Breach
Employees proposed a class-action lawsuit against Scripps Health, alleging that the San Diego health system failed to accurately log employee hours in the aftermath of the Kronos data breach in December. Read More
‘On high alert’: Hospitals wary of cyber threats from Russia-Ukraine war
U.S. hospitals, following decades of chronic underfunding in their cybersecurity infrastructures and after two years of operating in a major pandemic, could be teetering on the edge of a major cyber threat stemming from Russia’s unprovoked invasion of Ukraine, experts said this week at HIMSS. Read More
Cyberattack on NATO could trigger collective defense clause: Official
A cyberattack on a NATO member state could trigger Article 5, its collective defense clause, a NATO official said on Monday, amid concerns that chaos in cyberspace around Russia’s invasion of Ukraine could spill over into other territories. Read More
Fury As Okta—The Company That Manages 100 Million Log-ins—Fails To Tell Customers About Breach For Months
Okta, the $25 billion market cap company that handles log-ins for more than 100 million users, today confirmed it suffered a breach in January via a third-party customer support provider. Read More
Health data breaches swell in 2021 amid hacking surge, POLITICO analysis finds
Nearly 50 million people in the U.S. had their sensitive health data breached in 2021, a threefold increase in three years, according to a POLITICO analysis of the latest HHS data. Read More
Morgan Stanley client accounts breached in social engineering attacks
Morgan Stanley Wealth Management, the wealth and asset management division of Morgan Stanley, says some of its customers had their accounts compromised in social engineering attacks. Read More
SEC Proposes New Cybersecurity Incident Disclosure Rules
The Securities and Exchange Commission has proposed new legislation that would make cybersecurity incidents part of its mandatory reporting rules. Read More
What is Anonymous? How the infamous ‘hacktivist’ group went from 4chan trolling to launching cyberattacks on Russia
For nearly two decades, one of the world’s most infamous hacker groups has operated under the name “Anonymous.” And the mysterious online community is making headlines once again. Read More
