Create accountLogin

Recent searches

No recent searches

Search options

Only available when logged in.
eupolicy.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
This Mastodon server is a friendly and respectful discussion space for people working in areas related to EU policy. When you request to create an account, please tell us something about you.

Administered by:

Server stats:

240
active users

eupolicy.social: AboutProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.3.6

#notification

0 posts0 participants0 posts today
Replied in thread
Public
Kevin Karhan :verified:

@ai6yr @briankrebs OFC this targets #TechIlliterates and the only effective means here are:

  1. Teach #TechLiteracy instead of consumerism.
  2. Mandate #confirmation & #notification - #PopUp|s for every use of #Clipboard (similar to #webcam use by websites)...
  3. Ban #JavaScript - seriously!
  4. Ban #Windows, because it's a #Govware, espechally since #Windows10 and even more so on #Windows11 that is *insecure in every configuration!
  5. Put #TechIlliterates before a system they can't feck up. I.e. @tails_live @tails / #Tails for that reason alone (can't run such commands if they neither got #root nor any #persistent #storage to target).
  6. Normalize the use of @torproject #TorBrowser!
  7. #Teach #tech #literacy instead of #consumerism!
  8. Ban #GAFAMs and their shitty products!
  9. Migrate every #TechIlliterate to #Linux and don't give them administrative privilegues.
  10. Teach tech literacy instead of consumerism!
#techliteracy#confirmation#notification
Public
Dissent Doe :cupofcoffee:

Health-care billing company Medical Billing Specialists Inc. (MBS Select) has been hit with a potential class action lawsuit over their 2024 breach.

Notifications first went out a year after the attack by Akira ransomware group.

databreaches.net/2025/02/26/me

h/t, Bloomberg Law.

Direct link to complaint: bloomberglaw.com/public/deskto

#BAA#databreach#healthsec
Public
Dissent Doe :cupofcoffee:

DISA Global Solutions reports more than 3.3 million people were affected by the 2024 data breach they experienced, but questions remain.

In an interim update that had been quoted by a law firm,, DISA had made an intriguing statement about steps they had taken to dissuade the unnamed threat actor from leaking the data and providing confirmation of deletion.

That's all missing from their final notification.

Why?

databreaches.net/2025/02/25/di

#databreach #ransom #extortion #transparency #notification

@campuscodi

Public
Dissent Doe :cupofcoffee:

Another day, another leak, another inaccurate claim by an entity, and another inappropriate attack on a researcher. Buckle up.

@JayeLTee had alerted me to his nasty encounter with TeammateApp's CEO. See his post infosec.exchange/@JayeLTee/114 and his substack at jltee.substack.com/p/new-zeala

My report/commentary is at :

No need to hack when it’s leaking, Monday edition: TeammateApp:
databreaches.net/2025/02/24/no

@zackwhittaker @SchizoDuckie

Infosec ExchangeJayeLTee (@JayeLTee@infosec.exchange)🇳🇿 I've had quite a few outrageous responses to my alerts, this is another one of those, sent by teammateapp.com CEO. After my initial alert and follow up email, I get a reply lying about the severity of the exposure and telling me to stop harassing the company. This CEO also didn't know what Proton is and thought I work for them and threatened to report me to them in case I didn't stop. :blobshrug: Read about it here: https://jltee.substack.com/p/new-zealand-companys-impossible-to-hack-security #cybersecurity #infosec #privacy #database #databreach #leak #newzealand #nz #teammateapp #ceo #incidentresponse
#incident_response#disclosure#notification
Replied in thread
Public
Dissent Doe :cupofcoffee:

@froge I agree. If this is just the beginning of a new campaign that addresses timely notification too. They have announced the campaign on risk assessment already and have already announced a few settlements over that. But there's been no formal announcement or press release about any campaign specifically targeting timely notification.

I haven't finished up our 2024 gap analyses between discovery of breaches and notifications, but too many do not or cannot comply with the regulation. And then there all the entities that don't even report their breaches at all, and I wonder how we will get HHS OCR to address that unless I send them a massive watchdog complaint that lists about 150 regulated entities that didn't disclose breaches this past year when it appears that they did have reportable breaches.

#HIPAA#Notification#HITECH
Public
Dissent Doe :cupofcoffee:

Anyone else think that the HHS OCR monetary penalty imposed on Solara Medical was too steep? $3M is one of the steepest monetary penalties HHS OCR has imposed.

I'm glad to see enforcement of the timely notification requirement, but so many entities have blown the risk assessment requirement and the 60 day notification regulations so why is Solara being hit with such a stiff penalty?

databreaches.net/2025/01/14/hh

#HIPAA#SecurityRule#enforcement
Replied in thread
Public
Dissent Doe :cupofcoffee:

@JayeLTee You've helped me a lot, too, so thank YOU!

I just reached out to Roomster's CEO via LinkedIn to ask if they will be sending notifications. Let's see if he answers me. After their problems with the FTC and 6 state attorneys general last year (including New York's), they may be really panicking over the possibility of lawsuits or bad press at this point.

#Roomster#FTC#dataLeak
Public
Dissent Doe :cupofcoffee:

Westend Dental agrees to pay Indiana $350K and to implement a corrective action plan to settle charges of multiple HIPAA violations.

This is one of THE WORST incident responses I have ever read and I've read a lot of bad ones over the years. But it's not just an incident response disaster. They were routinely violating HIPAA privacy and security rules.

Kudos to the state of Indiana for going after the dental practice and investigating to find out all the problems.

Don't ask me what HHS OCR did, because I don't think they were ever even told about this 2020 ransomware attack.

Read more here, where you will also find the court filings I've uploaded so you can read how bad this one was:

databreaches.net/2024/12/31/we

#ransomware #compliance #HIPAA #healthsec #encryption #backup #PrivacyRule #SecurityRule #ransparency #disclosure #notification

@zackwhittaker @jgreig

Public
Edward Champion

One thing that Mastodon doesn't get a lot of credit for is the pop-up sound for new notifications on the web interface. The ba-bum pop sound is just right. It's gently pleasant, not the kind of notification sound that, oh say, is likely to inspire PTSD. (See Facebook Messenger, which I'm no longer on.) It's a functional Spartan sound that serves its purpose as opposed to something that is trying to hog your attention. The virtues of noncorporate open source.

#sound#notification#mastodon
Public *
fileneed

@jkmcnk @avian še navodilo za nekoderje: ko se ti popup pokaže, namesto da ga klikneš, poskrolaš stran dol, da pod popupom ni slikce, potem pa z desnim klikom odpreš meni in izbereš Blokiraj element. Odpre se okence desno spodaj. V njem klikneš na vrstico, kjer piše "###notification-popup", potem pa na gumb Ustvari in evo, naklikal si si pravilo za blokiranje nadležneža!

Public
Dissent Doe :cupofcoffee:

Evergreen School District in Montana has reported a #databreach to the Montana AG's Office. The unauthorized access occurred and was detected on September 30 and notification was made October 18.

The types of info were name and SSN.

And yet, Evergreen's letter says they have no reason to believe there has been or will be fraud or misuse of info.

And that's based on..... what, exactly?

Their letter can be found at dojmt.gov/wp-content/uploads/C

Their report to the AG indicates that 373 Montanans were affected by the breach.

@douglevin @funnymonkey @brett

#EduSec#notification
ExploreLive feeds
About