#InformationSecurity News - 12/10/14

  • $150K HIPAA Fine for Unpatched Software - OCR Imposes Penalty on Alaska Mental Health Provider. Read more at Healthcare Info Security
  • Bank Info Security reports that a type of cryptographic flaw known as POODLE, first publicly revealed Oct. 14 in SSL, has now also been found in Transport Layer Security. 
  • KrebsOnSecurity shares more information on wiretapping ATM skimmers complete with pictures of tapped machines. 
  • A new study indicates that 58 percent of businesses do not have complete patch management strategy, according to SC Magazine
  • Information Week's Dark Reading shares that IBM researchers have uncovered an attack that takes advantage of the "SpoofedMe" social login feature.