Fertility Centers of Illinois’ security measures protected electronic medical records, but the attackers still got at extremely intimate data in admin files.
https://threatpost.com/cyberattackers-data-80k-patients-fertility-centers-illinois/177467/
Microsoft Gets Second Shot at Banning hiQ from Scraping LinkedIn User Data
-
Decision throws out previous ruling in favor of hiQ Labs that prevented Microsoft’s business networking platform to forbid the company from harvesting public info from user profiles.
DISCLAIMER: Please note, that this article is not the work of (or owned by) Hostrisk.com. Attribution and copyright of this article is retained in full by the original author referred to in the Source link above
-
@cerberus I’d be showing far greater concern for those elastic search databases being stored in unencrypted S3 buckets. Research and previous media reports show this area as the most common source of attack.
You have hundreds of “boutique” firms scraping LinkedIn data and storing it completely unsecured, and without addressing this elephant in the room, the problem will not subside - it will only get much worse.