The Performance Blog

Improve Your Organization's Performance

Security and Compliance Weekly Roundup - Dec 19, 2016

Posted by Jim Whitecotton on Mon, Dec 19, 2016 @ 02:32 PM
Find me on:

Welcome to this week's Security and Compliance Weekly Roundup. 

This is a weekly series of posts highlighting some of the most read or interesting security and compliance news stories as well as those that peaked the interest of the staff here at Omni in the past week.


Sophos 7 Deadly IT Sins

Community Health Plan of Washington Announces 400,000-Record Data Breach

An unplugged security vulnerability at a business associate of Community Health Plan of Washington has resulted in the exposure of the protected health information (PHI) of almost 400,000 plan members.

Read More

Stolen yahoo data sold to spammers, one government client

A database of one billion stolen Yahoo accounts has been sold to at least three different buyers for $300,000 each, and the group selling the data and behind the 2013 intrusion—the largest data breach on record—is a criminal operation, not a state-sponsored attack group as Yahoo claims.

Read More

IBM: Ransomware spiked 6,000% in 2016 and most victims paid the hackers

CNBC, 14 Dec 2016: Spam emails loaded with ransomware — malware that scrambles data and demands a ransom to decode it — increased 6,000 percent this year compared with 2015, a new study from IBM (IBM) Security found. Ransomware was in almost 40 percent of all spam messages in 2016.

Read More

Microsoft Releases Critical Windows, Edge Browser Security Updates

Softpedia, 14 Dec 2016: Microsoft rolled out a total of 12 security updates this Patch Tuesday, 6 of which are rated as critical and another six of them flagged with an “important” severity rating.

Read More

Corporate Office 365 users hit with clever phishing attack

Heise Security, 14 Dec 2016: Corporate Office 365 users are being targeted by phishers using a clever new trick to bypass email filters and the default security protections of the Microsoft service.

Read More

Phishing email scams 108 government employees, 756,000 people affected by breach

CSO, 19 Dec 2016: On Friday, The LA County Chief Executive Office issued a public notice that 756,000 Californians were going to be receiving breach notification letters, after a single Phishing email scammed more than one hundred county employees.

Read More

Phishing email scams 108 government employees, 756,000 people affected by breach

CSO, 19 Dec 2016: On Friday, The LA County Chief Executive Office issued a public notice that 756,000 Californians were going to be receiving breach notification letters, after a single Phishing email scammed more than one hundred county employees.

Read More

LinkedIn training arm Lynda.com suffers data breach

Graham Cluley, 19 Dec 2016: Online training company Lynda.com, owned by LinkedIn (which itself is being acquired by Microsoft), has suffered a security incident which saw a user database accessed by unauthorized parties.

Read More

New wave of hailstorm spam pelts inboxes

Spammers are turning to an old technique known as hailstorm to slip past anti-spam and anti-malware filters. 

Read More

 


Omni can help with your cybersecurity and compliance needs.

Visit our Cybersecurity and Compliance page to learn about how Omni can help you protect your company from ever growing cyber threats.


 Are you meeting your cybersecurity objectives?  Don't find out the hard way.  Find Out Now