{"id":38063,"date":"2023-05-08T07:55:15","date_gmt":"2023-05-08T11:55:15","guid":{"rendered":"https:\/\/www.itworldcanada.com?p=538351"},"modified":"2023-05-09T16:06:09","modified_gmt":"2023-05-09T20:06:09","slug":"cyber-security-today-may-8-2023-sheriffs-office-pays-a-1-million-ransom-american-health-records-provider-is-hacked-and-more","status":"publish","type":"post","link":"https:\/\/technewsday.com\/staging\/cyber-security-today-may-8-2023-sheriffs-office-pays-a-1-million-ransom-american-health-records-provider-is-hacked-and-more\/","title":{"rendered":"Cyber Security Today, May 8, 2023 \u2013 Sheriff\u2019s office pays a $1 million ransom, American health records provider is hacked, and more"},"content":{"rendered":"<p>Sheriff&#8217;s office pays a US$1 million ransom, an American health records provider is hacked, and more.<\/p>\n<p>Welcome to Cyber Security Today. It&#8217;s Monday, May 8th, 2023. I&#8217;m Howard Solomon, contributing reporter on cybersecurity for ITWorldCanada.com and TechNewsday.com in the U.S.<\/p>\n<p><iframe style=\"border: none;\" title=\"Libsyn Player\" src=\"https:\/\/html5-player.libsyn.com\/embed\/episode\/id\/26769309\/height\/90\/theme\/custom\/thumbnail\/yes\/direction\/forward\/render-playlist\/no\/custom-color\/000000\/\" width=\"100%\" height=\"90\" scrolling=\"no\" allowfullscreen=\"allowfullscreen\"><\/iframe><\/p>\n<table style=\"width: 100%;\">\n<tbody>\n<tr>\n<td><a href=\"https:\/\/www.amazon.com\/ITWC-Cyber-Security-Today\/dp\/B07BRNG89P\/ref=sr_1_1?s=digital-skills&amp;ie=UTF8&amp;qid=1522688435\"  rel=\"noopener noreferrer\"><img loading=\"lazy\" decoding=\"async\" loading=\"lazy\" class=\"aligncenter wp-image-396718 size-full\" src=\"https:\/\/i.itworldcanada.com\/wp-content\/uploads\/2017\/09\/sub-alexa-200.png\" alt=\"Cyb er Security Today on Amazon Alexa\" width=\"200\" height=\"74\" border=\"none\" \/><\/a><\/td>\n<td><a href=\"https:\/\/www.google.com\/podcasts?feed=aHR0cDovL2N5YmVyc2VjdXJpdHl0b2RheS5saWJzeW4uY29tL3Jzcw%3D%3D\"  rel=\"noopener noreferrer\"><img loading=\"lazy\" decoding=\"async\" loading=\"lazy\" class=\"thumbnail aligncenter wp-image-408712 size-full\" src=\"https:\/\/i.itworldcanada.com\/wp-content\/uploads\/2018\/09\/sub-gp-200.png\" alt=\"Cyber Security Today on Google Podcasts\" width=\"200\" height=\"74\" \/><\/a><\/td>\n<td><a href=\"https:\/\/itunes.apple.com\/ca\/podcast\/cyber-security-today\/id1363182054\"  rel=\"noopener noreferrer\"><img loading=\"lazy\" decoding=\"async\" loading=\"lazy\" class=\"aligncenter wp-image-396720 size-full\" src=\"https:\/\/i.itworldcanada.com\/wp-content\/uploads\/2017\/09\/sub-itunes-200.png\" alt=\"Subscribe to Cyber Security Today on Apple Podcasts\" width=\"200\" height=\"74\" border=\"none\" \/><\/a><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<p><strong>Over 1 million American residents<\/strong> are being told their personal information was stolen after the hack of a medical provider. NextGen Healthcare, which sells electronic health record software to doctors and medical billing firms, says someone accessed data with patients&#8217; names, dates of birth, address and Social Security numbers between March 29th and April 14th. A copy of the letter being sent to victims was <a href=\"https:\/\/apps.web.maine.gov\/online\/aeviewer\/ME\/40\/cb1d4654-0ce0-4e59-9eec-24391249e2a8.shtml\"  rel=\"noopener\">filed last week with the state of Maine<\/a>. The breach was caused because someone outside of NextGen got hold of a customer&#8217;s username and password.<\/p>\n<p><strong>A California law enforcement agency<\/strong> has paid just over US$1 million to a ransomware gang after it was hit early last month. <a href=\"https:\/\/www.latimes.com\/california\/story\/2023-05-06\/hackers-targeted-a-california-sheriffs-department-should-they-have-paid-the-ransom\"  rel=\"noopener\">The Los Angeles Times reports<\/a> the San Bernardino County Sheriff&#8217;s Department and its insurance carrier spit the cost so the department could get access back to its data. The department had to shut its email, in-car computers and a system deputies use for background checks.<\/p>\n<p><strong>A new ransomware gang<\/strong> has appeared. <a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/meet-akira-a-new-ransomware-operation-targeting-the-enterprise\/\"  rel=\"noopener\">According to the Bleeping Computer News site<\/a> it&#8217;s called Akira. It began operations in March and claims to have already hit 16 organizations. Data on four of those victims has already been published on the gang&#8217;s data leak site.<\/p>\n<p><strong>Last week<\/strong> I told you about a ransomware attack on Bluefield University, a private Baptist university in Virginia. <a href=\"https:\/\/www.databreaches.net\/avos-locker-starts-leaking-student-data-from-bluefield-college-claims-to-still-have-access\/\"  rel=\"noopener\">On Sunday DataBreaches.net reported<\/a> that the AvosLocker gang has started to post samples of stolen student files on its data leak site. They did this as a way to pressure the institution to pay up. An affiliate of the gang told the news site that Bluefield hasn&#8217;t responded to their messages. The affiliate also maintains the gang still has access to the university&#8217;s IT network.<\/p>\n<p><strong>Murfreesboro Medical Clinic<\/strong> in Tennessee <a href=\"https:\/\/www.mmclinic.com\/www\/blog\/viewpost\/276\/important-update\"  rel=\"noopener\">is still recovering from a cyber attack.<\/a> Phone lines are back up, but the walk-in clinics, laboratory and radiology services were closed on the weekend. Staff were contacting patients over the weekend to confirm appointments and surgeries for today.<\/p>\n<p><strong>Twitter has admitted<\/strong> <a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/twitter-says-security-incident-exposed-private-circle-tweets\/\"  rel=\"noopener\">that a &#8216;security incident&#8217; has allowed supposedly private tweets among those using the limited access Twitter Circle capability to be seen by general Twitter users<\/a>. The incident happened last month. Twitter hasn&#8217;t given details on what happened.<\/p>\n<p><strong>Pro-Russian hackers<\/strong> <a href=\"https:\/\/www.securityweek.com\/pro-russian-hackers-claim-downing-of-french-senate-website\/\"  rel=\"noopener\">claim to have temporarily taken down<\/a> the website of France&#8217;s Senate. The attack is allegedly because of France&#8217;s support for Ukraine. Called NoName, it&#8217;s the same group that took credit for disrupting the website of Canadian Prime Minister Justin Trudeau last month.<\/p>\n<p><strong>Finally,<\/strong> there&#8217;s news of two security updates: <a href=\"https:\/\/www.fortiguard.com\/psirt\/FG-IR-22-297\"  rel=\"noopener\">Fortinet has issued upgrades<\/a> to its FortiADC application delivery controller. These close what the company describes as high-severity vulnerabilities. And <a href=\"https:\/\/www.securityweek.com\/critical-siemens-rtu-vulnerability-could-allow-hackers-to-destabilize-power-grid\/\"  rel=\"noopener\">Siemens has issued patches<\/a> for two models of its Sicam products used by energy producers.<\/p>\n<p>That\u2019s it for now. Remember links to details about podcast stories are in the text version at ITWorldCanada.com. That\u2019s where you\u2019ll also find other stories of mine.<\/p>\n<p>Follow Cyber Security Today on Apple Podcasts, Google Podcasts or add us to your Flash Briefing on your smart speaker.<\/p>\n<p>The post <a href=\"https:\/\/www.itworldcanada.com\/article\/cyber-security-today-may-8-2023-sheriffs-office-pays-a-1-million-ransom-american-health-records-provider-is-hacked-and-more\/538351\">Cyber Security Today, May 8, 2023 \u2013 Sheriff\u2019s office pays a $1 million ransom, American health records provider is hacked, and more<\/a> first appeared on <a href=\"https:\/\/www.itworldcanada.com\/\">IT World Canada<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>This episode reports on a new ransomware gang, an update on a ransomware attack on an American private university<\/p>\n","protected":false},"author":17,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[360,16],"tags":[389],"class_list":["post-38063","post","type-post","status-publish","format-standard","hentry","category-podcasts","category-security","tag-cyber-security-today"],"acf":[],"_links":{"self":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts\/38063","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/users\/17"}],"replies":[{"embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/comments?post=38063"}],"version-history":[{"count":3,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts\/38063\/revisions"}],"predecessor-version":[{"id":38130,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts\/38063\/revisions\/38130"}],"wp:attachment":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/media?parent=38063"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/categories?post=38063"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/tags?post=38063"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}