100M medical records hacked in 2015



A string of cyberattacks sent shockwaves through the health care industry in 2015, exposing sensitive data of millions of Americans and serving up the chilling reminder that providers need to step up their security game.

Hackers accessed more than 100 million health records in 2015, according to data from the Department of Health and Human Services. To learn more click here.

LifeLock pays $100M to settle FTC complaint of more false advertising


The U.S. Federal Trade Commission (FTC) yesterday announced that the anti-identity-theft company LifeLock will pay a record $100 million to settle a contempt complaint that originated with a court order of five years ago.

Arizona-based LifeLock, which purports to protect consumers from identity theft — and help them regain it if stolen — was once best known for its aggressive advertising, which splashed its CEO’s Social Security number everywhere and dared hackers to steal his identity.

To learn more about the settlement click here.

Thousands of websites will generate errors in browsers if their owners don’t replace certificates

Tens of thousands of secure websites might start to display certificate errors to their visitors in January, when Microsoft plans to stop trusting 20 certificate authorities (CAs) from around the world.

The list of certificates that are scheduled to be removed from Microsoft’s Trusted Root Certificate Program belong to CAs run by private or state-owned organizations from the U.S., France, the Czech Republic, Japan, Denmark, Chile, Turkey, Luxembourg, Ireland, Slovenia and Brazil.

With their removal from Microsoft’s program, the CAs will also be removed from the certificate trust list in Windows that’s used by browsers such as Google Chrome, Internet Explorer and Microsoft Edge, as well as by email clients and other applications that support secure communications over SSL/TLS.

To learn more click here.