Idaho State University agreed to pay $400,000 to settle allegations of HIPAA Security Rule violations after disabling server firewall protections at the Pocatello Family Medicine Clinic for at least 10 months, resulting in a breach affecting 17,500 patients. ISU failed to properly assess risks and vulnerabilities to electronic protected health information, leading to the breach and significant financial penalties. Other organizations, such as Hospice of North Idaho, have also faced HIPAA violations, underscoring the importance of data security measures.
Skuld Malware Using Weaponized Windows Utilities Packages To Deliver Malware
Researchers discovered a malware campaign infiltrating the npm ecosystem by distributing the Skuld info stealer through seemingly legitimate packages. The attacker, known as “k303903,” compromised