Medical Data Becoming Valuable To Hackers
Comments Off on Medical Data Becoming Valuable To Hackers
The personal information stored in health care records fetches increasingly impressive sums on underground markets, making any company that stores such data a very attractive target for attackers.
“Hackers will go after anyone with health care information,” said John Pescatore, director of emerging security trends at the SANS Institute, adding that in recent years hackers have increasingly set their sights on EHRs (electronic health records).
With medical data, “there’s a bunch of ways you can turn that into cash,” he said. For example, Social Security numbers and mailing addresses can be used to apply for credit cards or get around corporate antifraud measures.
This could explain why attackers have recently targeted U.S. health insurance providers. Last Tuesday, Premera Blue Cross disclosed that the personal details of 11 million customers had been exposed in a hack that was discovered in January. Last month, Anthem, another health insurance provider, said that 78.8 million customer and employee records were accessed in an attack.
Both attacks exposed similar data, including names, Social Security numbers, birth dates, telephone numbers, member identification numbers, email addresses and mailing addresses. In the Premera breach, medical claims information was also accessed.
If the attackers try to monetize this information, the payout could prove lucrative.
Credentials that include Social Security numbers can sell for a couple of hundred dollars since the data’s lifetime is much longer compared to pilfered credit card numbers, said Matt Little, vice president of product development at PKWARE, an encryption software company with clients that include health care providers. Credit card numbers, which go for a few dollars, tend to work only for a handful of days after being reported stolen.
WIN8 Enter Final Pre-Beta
Microsoft Windows developer build tracking site Winunleaked.tk has recently updated its Windows 8 build number page, documenting the milestones Microsoft developers have been achieving in the compilation of the Windows 8 operating system. According to the latest numbers, it appears that the company has just released the final pre-beta build, marking another significant milestone in the release cycle of the operating system.
The site claims Microsoft’s own testers will then vote on which of the next Windows 8 builds will become the “Final Beta,” with a voting decision being made on Saturday, January 28th. The final beta build will then be shown at an internal Microsoft preview on Monday, January 30th.
The official pre-beta build number is 8189.0.winmain.120120-1830, and according to the site, the next builds for Windows 8 will be labeled as “Beta Escrow” builds. Additionally, the operating system roadmap claims that the “Final Beta” build to be released to the public will be named “winmain_win8b1.”
Windows 8 To Have Simple Recovery
Microsoft has detailed the options that will be available to recover a crashed PC running Windows 8.
Users will be offered two alternatives when presented with a Windows crash, with options to either refresh or reset their lost machine.
The changes are detailed in a blog post from the firm where the refresh option was described as a way of retaining some work while restoring core OS functions. The other is a full face wipe.
“We’ve built two new features in Windows 8 that can help you get your PCs back to a ‘good state’ when they’re not working their best, or back to the ‘factory state’ when you’re about to give them to someone else or decommission them,” explains Microsoft’s Steven Sinofsky in the introductory blog post.
“The strength of this approach is that you start over from a truly clean state, but you still get to keep the things you care about. With that as the basis of the solution, our goal was to make the process much more streamlined, less time-consuming, and more accessible to a broad set of customers.”
Broadly, the two options work as follows. Fully resetting your PC will remove all personal data, apps, and settings from the PC and reinstall Windows, while just refreshing will keep all personal data, Metro style apps, important settings on the PC and reinstall Windows.
The reset option includes features for erasing old data more thoroughly. This involves choosing the “Thorough” option and should help protect more sensitive users, or firms storing official or compliance related information, from having their data exposed through third party refreshes.
.