LATEST POST
Epiq to Settle Lawsuit for $6.5 Million After Accidentally Leaking Identities of Church Sex Abuse Survivors
Bloomberg Law reports: More than 100 survivors of sexual abuse by clergy of the Catholic Church asked a Connecticut federal judge for final approval of their $6.5 million settlement with a bankruptcy services firm that mistakenly revealed their identities online. Epiq Corporate Restructuring LLC would pay at least 128 individuals cash payments of $50,000 under […]
International coalition of law enforcement takes down Ragnar_Locker ransomware portal
An international group of law enforcement agencies have seized the dark web portal used by the Ragnar_Locker ransomware gang. The notice appeared today, and although there have been no press releases yet by either Interpol, Europol, or the FBI, TechCrunch was able to get confirmation from a spokesperson for Europol that information will be released […]
Home health provider Personal Touch to pay $350,000 to NYS in data breach settlement
Newsday reports: A Lake Success-based home health care company reached a $350,000 settlement with the state after failing to protect the health care data of more than 316,800 New Yorkers, the state attorney general said Wednesday. Personal Touch Holding Corp., which provides home health care and hospice services through subsidiary companies, had an “informal and […]
Hacker leaks millions more 23andMe user records on cybercrime forum
The same individual, “Golem,” who leaked DNA data from 23andMe on BreachForums has now leaked even more data. While the original leak was described as relating to Ashkenazi Jews, the newest leak of more than 4 million records was described as being users from Great Britain and Germany, including data from “the wealthiest people living […]
Your Organization Has Suffered a Data Incident: Now Here Are the Regulators It Will Likely Encounter
From a recent article on Reuters: Government regulators are seemingly as numerous as the stars nowadays, especially in the universe of data incidents. When organizations experience a data incident, they will need to quickly assess what happened, why it happened, and who (e.g., clients, consumers, vendors, employees) was affected. They will also need to chart […]
Accenture Under Investigation by U.S. Justice Department Over Compliance Allegations
InfoTechLead reports that Accenture said on Thursday that the US Justice Department is investigating its unit, Accenture Federal Services, over allegations that one or more employees gave inaccurate information concerning the unit’s compliance with federal security controls. The disclosure was made in an SEC filing: After Accenture Federal Services (“AFS”) made a voluntary disclosure to the U.S. […]
Equifax fined £11 million by UK’s financial watchdog over 2017 cyber attack
PA Media reports that Equifax UK was fined over a breach at the firm’s U.S. owner, Equifax, Inc. The UK’s financial watchdog has fined Equifax £11 million for its role in one of the largest cyber attacks, which affected more than 13 million British consumers in 2017. The credit rating giant failed to keep its […]
Queensland: Mandatory data breach notification scheme a step closer
Attorney-General and Minister for Justice and Minister for the Prevention of Domestic and Family Violence The Honourable Yvette D’Ath issued the following statement: The Palaszczuk Government has today introduced legislation to establish a mandatory data breach notification scheme in Queensland, as recommended by the Coaldrake Review. The Information Privacy and Other Legislation Amendment Bill 2023 implements […]