LATEST POST
Responding to a Data Breach: How to Preserve the Attorney-Client Privilege
This client alert is based on a longer article Patrick Emerson McCormick wrote for the Conference on Consumer Finance Law Quarterly Report. Attorney-client privilege protects confidential communications made for the purpose of seeking or providing legal advice. The Supreme Court rejected a rigid control-group test and held that employee questionnaires and interview notes directed by corporate counsel were […]
Senators Investigate Vendor Cyberattack Exposing Sensitive Student Data; Demand Transparency
DEFCROS News reports: Senators Maggie Hassan and Jim Banks are pressing for answers from Navigate360 following a cyberattack that reportedly compromised sensitive student data from school safety tip lines. The incident has raised significant concerns about the security of information intended to protect students and the integrity of the systems designed to facilitate anonymous reporting. […]
Alleged Chinese state hacker involved in Silk Typhoon extradited to U.S.
The Record reports: A Chinese national accused of being a member of a state-backed hacking group has been extradited to the U.S. from Milan, his lawyer confirmed on Monday. Xu Zewei was arrested in July 2025 by Italian authorities after he was accused by the U.S. of involvement with a Chinese hacking group allegedly responsible for breaking […]
New York Yankees and Rangers fans at high risk of password breach; millions hacked, study reveals
The New York Post reports: New York sports fans might want to switch up their passwords. A new study from Duelbits revealed that millions of sports fans across America are at risk of being hacked due to passwords that are related to their favorite teams — and New York sports fans are some of the most […]
Ransomware hackers are now targeting victims with an infrastructure-driven approach
Cybersecurity Insiders reports: Cyberattacks have long evolved in waves, with ransomware groups historically choosing their victims based on industry type or company size. Financial institutions, healthcare providers, and large enterprises were often prime targets due to their ability to pay hefty ransoms. However, a new trend is emerging that signals a shift in attacker strategy. […]
Rhode Island announces $7 million settlement with Deloitte over RIBridges data breach
Rhode Island Current reports that the state has settled with Deloitte, the contractor responsible for the RIBridges data breach. A $7 million handshake between the Rhode Island Department of Administration and global consultancy Deloitte over the latter’s role in the 2024 RIBridges data breach has brought the state’s total windfall to $12 million for the […]
Criminals impersonate help desk, abuse Microsoft Teams to steal your data
The Register reports: A previously unknown threat group using tried-and-tested social engineering tactics – Microsoft Teams chat invitations and helpdesk staff impersonation – is also using custom malware in its data-stealing attacks, according to Google’s Threat Intelligence Group. The threat hunters say they spotted a “large email campaign” in late December 2025. The attack started by spamming […]
British hacker tied to Scattered Spider campaign pleads guilty in $8M scheme
The Record reports: A British hacker pleaded guilty Friday in U.S. federal court to participating in a sweeping cybercrime campaign that siphoned at least $8 million in cryptocurrency from companies and individuals, federal prosecutors said. Tyler Robert Buchanan, 24, of Dundee, Scotland, admitted to one count of conspiracy to commit wire fraud and one count […]