LATEST POST
California businesses have new cybersecurity obligations
Comply or risk class-action litigation? IAPP explains: Last year, the California Privacy Protection Agency adopted a major new rule requiring certain businesses to conduct an annual cybersecurity audit. The rule went into effect 1 Jan. 2026. This pioneering requirement, the first of its kind among state data privacy laws of general applicability, may entail substantial compliance efforts […]
Breach exposes sensitive LAPD files stored in city attorney system
On April 8, The Record reported: The Los Angeles Police Department on Tuesday announced that hackers gained access to a Los Angeles City Attorney’s Office digital storage system containing sensitive police documents. The LAPD described the documents as materials that had been turned over in discovery from previously resolved or settled LAPD civil litigation cases. […]
Hackers Threaten “Pay or Leak,” Kraken says “NO”
The Crypto Citizens Network reports on a somewhat different breach tactic where threat actors made a video of internal systems and threaten to leak the videos if their payment demands are not met. Kraken is standing firm that it won’t pay: In crypto, breaches usually start with code. This one didn’t. Kraken, one of the […]
Booking.com warns customers of possible data and security breach by ‘unauthorised parties’
ABC (Australia) reports: Some Booking.com customers are being warned their personal information may have been accessed by unauthorised third parties, prompting fresh concerns about the security of travellers’ data. The company operates more than 28 million accommodation listings globally, connecting travellers to hotels, apartments and other properties across hundreds of countries, as well as flights, […]
Hackers Demand GTA 6 Creator Rockstar Games Pay Them to Delete Hacked Data.
APB Live reports: A ransomware group known as ShinyHunters has added Rockstar Games to its dark web leak site, threatening to publish or sell stolen data if the gaming giant does not pay up. Rockstar Games has confirmed the breach, linking it to a third-party vendor, and says only a limited amount of non-material company […]
The AB Data Settlement Administrator Behind Billions in Class Action Payouts — And Why Most Americans Never Claim Their Share
Seen on The Creative Learning Guild: Some of the biggest consumer payout operations in the US are discreetly managed by a relatively small group of legal and technology experts in a building on A.B. Data Drive in Milwaukee, Wisconsin, which is somewhat surprisingly named after the company itself. The majority of people will never go there. The majority of […]
Act-of-War Clauses Cloud Cyber Insurance Coverage
Does it matter whether President Trump calls the situation with Iran a “war” or an “excursion” or something else if your company is hit by a cyberattack that may be in retaliation? The Wall Street Journal reports: From Europe to the Middle East, geopolitical conflicts have companies rereading the fine print on insurance policies that […]
Two patient data breaches in the first quarter of 2026: Valley Family Health Care’s Challenging Year
DataBreaches.net reports: On January 12, Valley Family Health Care (VFHC) notified HHS after learning that the TriZetto Provider Solutions (TPS) breach had affected 4,300 of their patients. The TPS breach, which began in November 2024, involved their patients’ names, addresses, dates of birth, Social Security numbers, health insurance member numbers (including Medicare beneficiary identifiers), health insurer names, […]