LATEST POST
Cyber insurers paid out over twice as much for UK ransomware attacks last year
The Register reports: The number of successful cyber insurance claims made by UK organizations shot up last year, according to the latest figures from the industry’s trade association. The Association of British Insurers (ABI) said £197 million ($259 million) in cyber insurance payouts were made to victimized organizations in 2024, up from £59 million ($77 […]
Intel says software engineer took ‘top secret’ documents after getting fired
The Oregonian reports: Intel says a former employee downloaded thousands of documents shortly after the company fired him in July, many of them classified as “Top Secret.” Jinfeng Luo lived in Seattle and had worked as a software developer for Intel since 2014, according to a lawsuit the company filed against him in Washington federal […]
Washington Post Falls Victim to Oracle-Linked Data Breach
PC Mag reports: The Washington Post has confirmed it fell victim to a large-scale cybercrime campaign that targeted Oracle’s business applications, joining Harvard University and American Airlines-owned carrier Envoy, which announced similar breaches last month. The news, first reported by Reuters, comes after Google said in October that it believes around 100 companies were affected by the hacking campaign, and that “large amounts […]
Newly identified Android spyware appears to be from a commercial vendor
The Record reports: Security researchers on Friday revealed the discovery of “commercial grade” spyware used in a 9-month-long hacking campaign aimed at Samsung Galaxy phones likely concentrated in the Middle East. The Android spyware, dubbed LANDFALL, exploited a zero-day, or previously undocumented, vulnerability in Galaxy phones’ image processing libraries. The spyware was likely sent via […]
Attorney General Bonta Joins States in Securing $5.1 Million in Settlements from Education Software Company for Failing to Protect Students’ Data
In 2022, Illuminate Education, Inc. suffered a major data breach. Now three states have announced a settlement with the edtech vendor. From the California Attorney General Rob Bonta’s office:
Webinar: Data Breach and Incident Response: The new Litigation and Document Review
A free event on November 19, 2025 by ACEDS NY Metro Chapter. Registration is required. Join us for an insightful discussion on data breach management featuring industry experts: ■ Harry Buck | Founder and CEO of Legal Outsourcing 2.0, Inc. Harry is an experienced litigator, and the Founder and CEO of Legal Outsourcing 2.0. where he […]
Cloud Backup Security Incident Investigation Complete and Strengthened Cyber Resilience
SonicWall reports: In early September, SonicWall detected suspicious activity related to the downloading of backup firewall configuration files stored in a specific cloud environment. Our incident response team immediately activated our established response protocols, engaged Mandiant, a leading cybersecurity response firm, and notified our global partners and customers directly about the incident and remediation steps to protect their customers. In addition to frequent and transparent communication with partners and customers, SonicWall […]
CBO systems accessed in ‘security incident’ possibly tied to foreign hackers
NextGov reports: The Congressional Budget Office, Capitol Hill’s nonpartisan accounting service that delivers financial assessments for legislation, was accessed in a hack potentially tied to a foreign hacker group. “The Congressional Budget Office has identified the security incident, has taken immediate action to contain it, and has implemented additional monitoring and new security controls to […]