Preetha Suresh Rini of Robinson Bradshaw explains: In recent years, defendants in data breach class action lawsuits filed in the
KnowTechie reports: Two former cybersecurity professionals have admitted they were secretly running ransomware attacks on the side. According to an announcement this
The Record reports: France’s data protection regulator has fined the software company Nexpublica France €1.7 million ($2 million) for poor
By Hunton Andrews Kurth’s Privacy and Cybersecurity Blog: On December 16, 2025, the Federal Trade Commission (“FTC”) announced an enforcement action against
The Record reports: French authorities arrested a 22-year-old on Wednesday as part of an investigation into a hack of the
Miscellaneous News
From Polsinelli PC: In two separate but related actions, third party administrators (TPAs) and their insurance business partners agreed to
CSO reports: Three of the most notorious ransomware-as-a-service operations have formed a criminal cartel aimed at coordinating attacks and sharing
What caused a massive Verizon outage yesterday? The firm still hasn’t said. The Gothamist reports: Verizon service is back for affected customers in the New York area after a widespread outage disrupted cellphones across the country for much of Wednesday, the company said. Affected customers will receive account credits, according to Verizon, which said details would be shared directly with customers. Any customers still experiencing connectivity issues should restart their devices to reconnect to the network, the company added. “Today,
RawStory reports: A Department of Homeland Security whistleblower has released the identities of about 4,500 ICE and Border Patrol employees Tuesday in what has been called potentially the largest agency data breach for the department. The killing of 37-year-old mother Renee Nicole Good by ICE agent Jonathan Ross last week in Minneapolis has prompted the leak of personnel date to the ICE List, an online database created to promote accountability by the masked federal agents, according to a report from The Daily Beast. The onslaught of
As seen on HackRead: Resecurity, which shared its research with Hackread.com, found that the leaked file contains information on 323,986 users, including their “metadata extracted from MySQL DB,” which is basically a digital footprint that could help identify the people behind the screens. The database was published on shinyhunte.rs, a site that has previously hosted stolen datasets and is not recommended for direct access due to the risk of malicious content. The same platform has been used in the past to leak
The Register reports: Meta has fixed a flaw in its Instagram service that allowed third parties to generate password reset emails, but denied the problem led to theft of users’ personal information. Last Friday, security software vendor Malwarebytes claimed “Cybercriminals stole the sensitive information of 17.5 million Instagram accounts, including usernames, physical addresses, phone numbers, email addresses, and more.” The vendor included a screenshot of a password reset email sent to Instagram users. On Saturday, Instagram posted the following: “We fixed an issue that
Fox News reports: Cybercriminals have found a clever new way to get phishing emails straight into inboxes. Instead of spoofing brands, they are abusing real cloud tools that people already trust. Security researchers say attackers recently hijacked a legitimate email feature inside Google Cloud. The result was thousands of phishing messages that looked and felt like normal Google notifications. Many slipped past spam filters with ease. At the center of the campaign was Google Cloud Application Integration. This service allows businesses
Help Net Security reports: Law enforcement agencies in Ukraine and Germany have identified two members of a Russian-affiliated ransomware group
The San Diego Union-Tribune reports: A survey by the Identity Theft Resource Center, a San Diego-based education and victim resource
On November 21, 2025, the University of Phoenix learned it had been affected by the Oracle E-Business Suite vulnerability that
The Register reports: The number of successful cyber insurance claims made by UK organizations shot up last year, according to
Insurance Business Magazine reports: A Texas woman has sued Goosehead Insurance Agency over a data breach that exposed sensitive customer
Sarah Hemmersbach or Mitratech Holdings writes: A third-party data breach occurs when malicious actors compromise a vendor, supplier, contractor, or
What caused a massive Verizon outage yesterday? The firm still hasn’t said. The Gothamist reports: Verizon service is back for affected customers in the New York area after a widespread outage disrupted cellphones across the country for much of Wednesday, the company said. Affected customers will receive account credits, according to Verizon, which said details would be shared directly with customers. Any customers still experiencing connectivity issues should restart their devices to reconnect to the network, the company added. “Today,
RawStory reports: A Department of Homeland Security whistleblower has released the identities of about 4,500 ICE and Border Patrol employees Tuesday in what has been called potentially the largest agency data breach for the department. The killing of 37-year-old mother Renee Nicole Good by ICE agent Jonathan Ross last week in Minneapolis has prompted the leak of personnel date to the ICE List, an online database created to promote accountability by the masked federal agents, according to a report from The Daily Beast. The onslaught of
As seen on HackRead: Resecurity, which shared its research with Hackread.com, found that the leaked file contains information on 323,986 users, including their “metadata extracted from MySQL DB,” which is basically a digital footprint that could help identify the people behind the screens. The database was published on shinyhunte.rs, a site that has previously hosted stolen datasets and is not recommended for direct access due to the risk of malicious content. The same platform has been used in the past to leak
The Register reports: Meta has fixed a flaw in its Instagram service that allowed third parties to generate password reset emails, but denied the problem led to theft of users’ personal information. Last Friday, security software vendor Malwarebytes claimed “Cybercriminals stole the sensitive information of 17.5 million Instagram accounts, including usernames, physical addresses, phone numbers, email addresses, and more.” The vendor included a screenshot of a password reset email sent to Instagram users. On Saturday, Instagram posted the following: “We fixed an issue that
Preetha Suresh Rini of Robinson Bradshaw explains: In recent years, defendants in data breach class action lawsuits filed in the
KnowTechie reports: Two former cybersecurity professionals have admitted they were secretly running ransomware attacks on the side. According to an announcement this
The Record reports: France’s data protection regulator has fined the software company Nexpublica France €1.7 million ($2 million) for poor
By Hunton Andrews Kurth’s Privacy and Cybersecurity Blog: On December 16, 2025, the Federal Trade Commission (“FTC”) announced an enforcement action against
The Record reports: French authorities arrested a 22-year-old on Wednesday as part of an investigation into a hack of the
Miscellaneous News
From Polsinelli PC: In two separate but related actions, third party administrators (TPAs) and their insurance business partners agreed to
CSO reports: Three of the most notorious ransomware-as-a-service operations have formed a criminal cartel aimed at coordinating attacks and sharing
Help Net Security reports: Law enforcement agencies in Ukraine and Germany have identified two members of a Russian-affiliated ransomware group
The San Diego Union-Tribune reports: A survey by the Identity Theft Resource Center, a San Diego-based education and victim resource
On November 21, 2025, the University of Phoenix learned it had been affected by the Oracle E-Business Suite vulnerability that
The Register reports: The number of successful cyber insurance claims made by UK organizations shot up last year, according to
Insurance Business Magazine reports: A Texas woman has sued Goosehead Insurance Agency over a data breach that exposed sensitive customer
Sarah Hemmersbach or Mitratech Holdings writes: A third-party data breach occurs when malicious actors compromise a vendor, supplier, contractor, or
