Risk News

Microsoft says it has found Iranian hackers targeting U.S. agencies, companies and Middle East advocates
"In the latest of a string of security actions, Microsoft has seized 99 websites it says were used by Iranian hackers to launch cyberattacks against government agencies, businesses and users in Washington, according to a company blog post and court records unsealed Wednesday."
Annie's take:

Microsoft went to court to take down these sites.
Death by a Thousand Clicks: Where Electronic Health Records Went Wrong
"The pain radiated from the top of Annette Monachelli’s head, and it got worse when she changed positions."
Annie's take:

Here's the sad story of interoperability and medical records.
The Marriott Breach Shows Just How Inadequate Cyber Risk Disclosures Are
"Another year and another hack and what seems like a very long wait to learn that it happened. Recently, Marriott waited 11 weeks to reveal that 383 million customer records had been compromised, exposing at least 25 million passport numbers and 8 million payment cards. Can you imagine a company like Marriott waiting for 11 weeks to disclose its quarterly earnings numbers? That wouldn’t be acceptable; why is waiting that long to disclose this type of incident?"
Annie's take:

A good article, with some sobering questions.