Trouble viewing this email?  View in web browser ›

The Wall Street Journal ProThe Wall Street Journal Pro

CybersecurityCybersecurity

Sponsored by NetscoutNetscout

Cyber Daily: Highmark Health Finds Cybersecurity Staff in a Tight Labor Market

By Kim S. Nash

 

Hello. Before the pandemic, Highmark Health CISO Omar Khawaja had cybersecurity staff in just two states. Now a “work-from-anywhere” policy means his people are spread among 21 states.

Being flexible about where someone works helps Mr. Khawaja recruit good people, WSJ Pro's Catherine Stupp reports. So does being open-minded about a candidate's experience, or lack thereof. 

Read our Q&A here. 

Today: On Election Day in the U.S., federal officials are working to debunk online misinformation and talk of security breaches on voting machines and at voting locations at CISA's "Rumor Control" site.  

Other news: 

  • Maple Leaf Foods tries to head off meat and poultry disruption after cyberattack
  • Medibank won't pay ransom
  • Experian, T-Mobile settle breach cases
  • Crypto firms lobby hard ahead of 2022 elections
  • Ireland's healthcare system monitors dark web
 
Share this email with a friend.
Forward ›
Forwarded this email by a friend?
Sign Up Here ›
 
CONTENT FROM OUR SPONSOR: Netscout

Ensuring Election Integrity in the U.S. Midterms

Network administrators and security professionals responsible for the security of election infrastructure need to be focused on potential technology disruptions.

Learn More

 

Enforcement

PHOTO: ARMEND NIMANI/AGENCE FRANCE-PRESSE/GETTY IMAGES

Justice Department Announces Seizure of Bitcoin Once Valued at $3.36 Billion

The cryptocurrency seizure, now worth about $1 billion, took place in November 2021 and hadn’t been publicly announced. James Zhong of Georgia pleaded guilty on Friday to one count of wire fraud for stealing more than 50,000 bitcoin in 2012 from Silk Road, a now-defunct online dark web marketplace.

  • Mr. Zhong, 32 years old, is set to be sentenced in February. Attorney Michael Bachner said his client was remorseful for conduct that occurred when he was just 22 years old. Read the full WSJ story. 

Experian, T-Mobile settle data-breach cases with states. Credit rater Experian PLC and telecom carrier T-Mobile US Inc. agreed to pay $16 million in three multi-state settlements regarding their separate data breaches in 2012 and 2015, Iowa's attorney general's office said. The deals aren't related to the massive breach at T-Mobile in 2021. 

Japan plans to officially join NATO's Cooperative Cyber Defence Centre of Excellence, which holds cyber training exercises and conducts research. (InfoSecurity Magazine) 

$73 Million

Amount crypto firms and their employees poured into 2022 elections, up from $13 million in the 2020 cycle, according to research group OpenSecrets, which tracks political donations, WSJ reports.

 

Aftermath

Ireland's national healthcare system monitors dark web. Eighteen months after a May 2021 ransomware attack led to widespread computer outages at hospitals across Ireland, the Health Service Executive said it has found no signs compromised data has been leaked or is being used in scams. 

  • The HSE plans to notify more than 100,000 people who had their personal data stolen during the incident. The attack and recovery have so far cost the HSE more than 100 million euros, or about $100.1 million. (Irish Times)
  • 👉 Read more on the attack from WSJ Pro: Irish Healthcare System Struggles With Tech Disruptions After Ransomware Attack
 

Join us for The WSJ Risk & Compliance Forum on Nov. 16

The event includes a discussion on cybersecurity regulation with Tom Kellermann of Contrast Security and Kristina Littman of Wilkie Farr & Gallagher, plus a breakout on the use of customer data with Stephanie Liu of Forrester Research.

Register here.

 
Advertisement
‏‏‎ ‎
 

Privacy News‎

PHOTO: BRENDON THORNE/BLOOMBERG NEWS

Medibank says 'no ransom payment will be made.' Australian insurer Medibank Private Ltd., in consultation with cybercrime experts, has decided not to pay a ransom demanded by hackers who stole policyholder data last month. "Today, we’ve announced that no ransom payment will be made to the criminal responsible for this data theft," the company said Monday. 

Medibank also disclosed specifics about the stolen data: 

  • Personal data about 9.7 million current and former customers
  • Health claims data for about 480,000 customers
  • Personal data for about 2,900 customers' next of kin
  • Details about an unspecified number of healthcare providers
 

Cyberattacks

PHOTO: DELLA ROLLINS

/BLOOMBERG NEWS

Meat producer Maple Leaf Foods Inc. is working to restore operations after a cyberattack on Sunday. Maple Leaf, based in Ontario, Canada, said it is collaborating with customers to minimize disruptions to meat and poultry supplies. 

New York's Albany City School District disconnected from the internet after a weekend cyberattack. The district said it wasn't ransomware and no data was stolen, adding it expects staff and student systems to be offline through Wednesday. (Times Union)

11 Trillion

Number of years it would take to crack an 18-character password that combines numbers and upper- and lower-case letters by brute force computing, according to cybersecurity company Hive Systems LLC.

 

About Us

Write to the WSJ Pro Cybersecurity Team: Kim S. Nash, James Rundle, Catherine Stupp and David Uberti.

Follow us on Twitter: @knash99, @catstupp and @DavidUberti. 

Contact Enterprise Technology Editor Steve Rosenbush at steven.rosenbush@wsj.com or follow him on Twitter: @Steve_Rosenbush.

 
Desktop, tablet and mobile. Desktop, tablet and mobile.
Access WSJ‌.com and our mobile apps. Subscribe
Apple app store icon. Google app store icon.
Unsubscribe   |    Newsletters & Alerts   |    Contact Us   |    Privacy Notice   |    Cookie Notice
Dow Jones & Company, Inc. 4300 U.S. Ro‌ute 1 No‌rth Monm‌outh Junc‌tion, N‌J 088‌52
You are currently subscribed as [email address suppressed]. For further assistance, please contact Customer Service at pro‌newsletter@dowjones.com or 1-87‌7-975-6246.
Copyright 2022 Dow Jones & Company, Inc.   |   All Rights Reserved.
Unsubscribe