LATEST POST
DFS Announces $1 Million Cybersecurity Settlement With First American Title Insurance Company
On November 28, the New York State Department of Financial Services (DFS) issued a press release about a settlement stemming from a 2019 data breach: The New York State Department of Financial Services (DFS) today announced that First American Title Insurance Company (First American) will pay a $1 million penalty to New York State for […]
Okta Says Hackers Stole Data For All Customer Support Users
The Wall Street Journal reports: Okta said hackers stole data for all of its customer support system users in a breach that the identity-verification company disclosed last month. Okta Chief Security Officer David Bradbury said all Okta Workforce Identity Cloud and Customer Identity Solution customers are affected by the hack, except for government customers that use […]
Queensland passes mandatory data breach notice laws
InnovationAus reports: Queensland has become only the second state to legislate a mandatory data breach notification scheme for public sector entities, as an almost identical scheme comes into effect in New South Wales. The Information Privacy and Other Legislation Amendment Bill 2023 passed through the Queensland state Parliament on Wednesday, less than two months after the bill […]
Some tips to protect yourself from ID theft after a breach
New York Attorney General Letitia James recently advised New York residents how to protect themselves after a medical transcription service cyberattack compromised the personal and protected health information of millions of New York residents. Some of the recommendations Attorney General James made are applicable to any data breach or data leak in which your identity […]
ID Theft Service Resold Access to USInfoSearch Data
Brian Krebs reports on a service that may be selling your identity information — including your Social Security number — to anyone and everyone, for anywhere from $8 to $40. With your identity information so easy for criminals or just anyone to buy, what are you doing these days to protect yourself from ID theft? […]
Ransomware attack on Ardent Health Services causes outages in multiple hospitals and states
Ardent Health Services owns and operates 30 hospitals and health systems with 200+ sites of care with more than 1,400 aligned providers in six states. Earlier today, they posted a security incident notice on their site: Ardent Health Services and its affiliated entities (“Ardent”) became aware of an information technology cybersecurity incident on the morning of […]
Nvidia’s Data Breach Blunder: A Case Study in Cybersecurity Negligence
TechStory reports: Nvidia, a renowned technology company, is facing a lawsuit alleging that one of its workers stole sensitive data from a former employer, Valeo, and then mistakenly divulged the stolen material during a video conference screen-sharing mishap. According to the lawsuit, Mohammad Moniruzzaman, a former Valeo employee who joined Nvidia in 2021, downloaded a […]
Henry Schein re-encrypted by BlackCat again
DataBreaches.net reports on a ransomware incident where the victim was re-encrypted — and then re-encrypted again. From there, things took a downward turn, with AlphV getting mad at Henry Schein and Coveware and re-encrypting Henry Schein to put more pressure on them to negotiate and pay. DataBreaches.net provides a chronology of updates, including what seems […]