Tag Archive for: letter

Attorney weighs in on Norton ransomware attack letter

/in


LOUISVILLE, Ky. — Many Kentuckians recently got a letter in the mail from Norton Healthcare that said their personal information may have been stolen in a cyber attack.

What You Need To Know

  • Around 2.5 million people received a letter informing them their information may have been stolen in a ransomware attack on Norton Healthcare

  • The hospital system sent out the letter more than half a year after it discovered the attack

  • Norton said it took time to analyze the breach

  • A prominent attorney with Morgan & Morgan said waiting months to notify impacted patients is a problem because it leaves them at risk without notification that they need to protect themselves

It has been more than half a year since the Louisville-based hospital system first reported what it at the time called a “cyber event.”

Attorney John Yanchunis, who leads Morgan & Morgan’s consumer class action practice, said waiting that long to inform patients about the breach is a “real problem.”

“Obviously, a company following a breach will investigate,” Yanchunis said. “By law, most states require notification to the consumer within 30 days. There will be probably repercussions to the entity for having delayed. The problem with that is that consumers not having received timely notice aren’t put on notice that they need to protect themselves.”

According to Norton Healthcare, the letter was sent to around 2.5 million people. The letter said an unauthorized individual got access to the company’s network storage devices between May 7-9.

It said information obtained in the breach could include a patient’s name, birth date, social security number, driver’s license number, contact information, health records, financial account numbers and even digital signatures, along with other personal and identifying information.

At the time of the hacking, Norton had to take its network offline, as it received a fax with threats and demands. The company worked with forensic investigators. The letter said the breach took time to analyze.

In the letter, Norton offers two years of credit monitoring for patients who may have been affected through Kroll. The company provides credit monitoring services; however,

Source…

Letter: How Covid leaves companies more vulnerable to cyber attack

/in


I read with interest the controversy surrounding Lloyd’s of London insurers proposing that companies who offer cover against cyber security attacks should include exemptions in their policies that would prevent them from paying out if an attack is deemed to be “state-backed” (“Lloyd’s locked in battle over state-backed cyber attacks”, Report, April 3).

This issue comes at a time when there has been a marked increase in state-backed cyber attacks. Microsoft recently announced that it had found the proportion of cyber attacks perpetrated by states targeting critical infrastructure had risen from 20 per cent to 40 per cent in the past 12 months.

Sadly, the hackers’ success rate will continue to rise as technology improves, incentives increase and current cyber security measures fail to reach the benchmarks required to thwart attacks.

The shift towards remote work, the workplace trend of “bring your own device”, cloud computing and the explosion of “internet of things” devices means that cyber security systems are increasingly less effective, if not obsolete.

Traditional cyber security works on the premise that a company or organisation has ringfenced access points — networks that have closed and controlled infrastructure.

However in recent years, propelled by Covid-19, the servers have left the room. Decentralised and networked business environments and off-premise devices such as mobile phones and laptops, become single points of failure, regardless of current cyber security controls.

Current IT architecture is centralised, meaning there is a central point of control or authority, which makes it easy for attackers to target and compromise an entire system or take over processes.

The insurance narrative is gaining traction for all the wrong reasons.

Monica Oravcova
Co-Founder and Chief Operating Officer, Naoris Protocol, Wilmington, DE, US

Source…

AITX’s Subsidiary Robotic Assistance Devices Shipping an Additional 14 Units on New Letter of Intent from Major Casino Operator

/in


News and research before you hear about it on CNBC and others. Claim your 1-week free trial to StreetInsider Premium here.

Large Deployment Expected to Begin in July

Detroit, Michigan, June 22, 2022 (GLOBE NEWSWIRE) — Artificial Intelligence Technology Solutions, Inc., (OTCPK:AITX), today announced that its wholly owned subsidiary Robotic Assistance Devices, Inc. (RAD) has received a Letter of Intent from a regional casino operator for large quantity of RAD devices. The expected receipt of this order had been previously acknowledged in a press release in late April of this year.

The Company stated that the Letter of Intent is for a minimum of 12 ROSA security units, 1 SCOT stationary tower, and 1 ROAMEO mobile security robot. The agreement is structured as to allow the client to increase the number of units on order without the need to re-engage their purchasing process. It is expected that deployments will begin in July 2022. The client may choose to be identified in the future as well as participate in a case study since the RAD devices will be in public view.

“Persistence pays off. At RAD we grind until we get the win,” said Mark Folmer, President of RAD. “This client has certainly done their due diligence. I have great respect for their partner qualification process. We’ve gone through similar procedures to ensure that every box is checked when a client is looking at RAD.”

“This is going to be such a great deployment,” said Steve Reinharz, CEO of AITX and RAD. “It’s a picture-perfect commercial deployment, with multiple ROSAs keeping an eye on the facility and their guests, a SCOT at the main entrance providing valuable information and security, plus a ROAMEO on patrol between the parking structure and the front entrance. We expect that these quantities could double in the coming months, at this one location.”

RAD’s parent company AITX has filed for uplisting to the OTCQB. Future announcements will be made regarding the status of the OTCQB application.

ROSA is a compact, self-contained, portable, security and communication solution that can be deployed in about 15 minutes. Like other RAD solutions, it only requires power as it includes all necessary…

Source…

YC’s letter to founders, Apple’s folding device and the DOJ’s new stance on hackers

/in


Hi all!

Welcome back to Week in Review, our newsletter where we wrap up many of the top stories to hit TechCrunch over the last seven days.

The big thing this week, based on what people were reading most, were the details of a memo sent from Y Combinator to its portfolio founders.

As the markets continue to slide,YC is telling its portfolio founders that it’s time to batten down the hatches — cut costs, extend runway and get to a “default alive” state. “For those of you who have started your company within the last 5 years,” YC writes, “question what you believe to be the normal fundraising environment.”

Manish has the full 10-point email right here.

other things

Besides more bad news about the markets, what else was going on?

Apple testing a foldable?: Is Apple tinkering with the idea of folding phones and/or tablets? Analyst Ming-Chi Kuo says Apple is testing E-Ink displays for the secondary display on an as-of-yet-unseen “future foldable”. As Brian points out, though, “there’s a big gulf between testing and releasing” — in other words, don’t be too surprised if this one never sees the light of day.

NHTSA probes Tesla crash: Earlier this month, a Tesla Model S “hit a curb and slammed into construction equipment”, killing three. The National Highway Traffic Safety Administration is now looking into the accident to determine if Tesla’s Autopilot system could’ve been involved.

DOJ says it will no longer prosecute good-faith hackers: After way, way, way too long, the U.S. Justice Department is re-evaluating how it looks at hacking cases, for the first time outright stating that “good-faith security research should not be charged” under the Computer Fraud and Abuse Act.

Haje on Coke’s new bottle cap: “When [Coke] sends out a hand-wringing press release about how awesome they are for launching a bottle cap where the cap stays attached to the bottle ‘for environmental reasons,'” writes Haje, “I’m sorry, my blood just boils.”

PayPal Ventures alums launch a new fund: Within a few months of parting ways with PayPal Ventures, these three alums had raised a huge new fund of their own. The focus? Fintech, and backing “startups that address ‘the biggest hurdles’ in today’s…

Source…