LATEST POST
Cyprus Airways warns of potential passenger data breach following phishing attack
PhileNews reports: Cyprus Airways has warned customers of a potential personal data breach following a phishing attack that gave unauthorised access to passenger information. The airline said in an email to customers that an unauthorised external party recently gained access to a passenger file through credential phishing, though there was no breach of the company’s servers or electronic […]
First M&S – now insurers are Scattered Spider’s target
Insurance Business Magazine reports: British insurers are bracing for an escalating wave of cyberattacks after one of the world’s most notorious hacking groups, Scattered Spider, has pivoted from raiding retailers to targeting insurance and financial services companies on both sides of the Atlantic. Google’s Threat Intelligence Group has issued a fresh warning, saying it had […]
State Data Breach Notification Laws – June 2025
Foley & Lardner has updated a resource on state laws. From their website:
Remorseless extortionists claim to have stolen thousands of files from Freedman HealthCare
The Register reports: An extortion gang claims to have breached Freedman HealthCare, a data and analytics firm whose customers include state agencies, health providers, and insurance companies, and is threatening to dump tens of thousands of sensitive files early Tuesday morning. According to a claim posted Sunday on the shame site belonging to World Leaks, […]
Abilene invests nearly $1M to boost cyber defenses, restore systems after cyberattack
KTAB/KRBC reports: The Abilene City Council has unanimously approved nearly $1 million in funding to bolster cybersecurity efforts and restore systems after a recent cyberattack knocked out several city servers. Director of Information Technology Troy Swanson addressed the council Thursday, outlining the costs and detailing the recovery process. He said the investment is aimed at […]
Over 170k Records, Including PII Exposed in Real Estate Investment and Management Data Breach
Jeremiah Fowler, discovered and reported to Website Planet about an unencrypted and non-password-protected database that contained 170,360 records with a total size of 116.24GB. Fowler reports: Fowler reports that although the data appear to belong to Income Property Investments Inc., he could not determine whether they are responsible for the data storage misconfiguration or if a vendor […]
Cyberattack on Washington Post Strikes Journalists’ Email Accounts
The Wall Street Journal reports: A cyberattack on the Washington Post compromised email accounts of several journalists and was potentially the work of a foreign government, company officials told some affected staffers in recent days, according to people familiar with the situation. Staffers were told the intrusions compromised journalists’ Microsoft accounts and could have granted the intruder […]
YES24 apologizes for ransomware attack and plans customer compensation
YES24 is a South Korean booking and entertainment ticketing service. A ransomware attack on June 9 had impact on its services, as Chosun.Biz reports: Access to the website was completely halted, along with order histories and shipping. As a result, the entertainment industry also faced repercussions, with B.I postponing his fan meeting’s pre-sale schedule, and […]