My local hospital has been hacked. BJC notified its patients that more than 30,000 records were vulnerable due to a configuration error and available from May 2017 until January 2018. The data includes patient IDs and treatment-related documents that were collected during hospital visits years ago. BJC staff indicated that no actual data was leaked and will be sending out free ID theft protection notices shortly.
As we mentioned earlier in the week, we want to thank our sponsors for their support of this newsletter. If you are interested in understanding more about FIDO and stronger authentication, a recent Nok Nok Labs report shows how Ericsson reduced password reset requests from its users by integrating Nok Nok’s S3 Authentication Suite into their internal identity management platform for millions of its customers.
If you aren't yet a Premium subscriber, you missed yesterday's report on the interesting and innovative security research coming out of Ben-Gurion University in Israel. Go to our Premium page and sign up, subscription plans start at $10/month with multiple newsletters and corporate plans available. Premium subscribers get an additional Thursday newsletter, usually with a single analysis topic.
--David Strom, editor of Inside Security