LATEST POST
In two separate cases, Marriott settles charges stemming from multiple data breaches
Settlements were announced by the FTC and state attorneys general yesterday. Only the state settlement involved a monetary penalty because the FTC had no authority to impose penalties in its case. Settlement with the FTC Source: The Federal Trade Commission $52 Million Settlement with States Source: NYS Attorney General’s Office
Internet Archive leaks 31 million users’ info and succumbs to DDoS
31 million users’ usernames, email addresses and salted-encrypted passwords are out there The Register reports: The Internet Archive had a bad day on the infosec front, after being DDoSed and exposing user data. On Wednesday afternoon US time the outfit’s digital library Brewster Kahle revealed a DDoS attack had made the site unavailable. The Register understand the outage may […]
The problem with third-party breaches – a data protection dilemma
Commentary by Clyde Williamson, Security Architect at Protegrity. There has been a notable increase in third-party breaches, with headlines featuring Snowflake, Santander and Ticketmaster as recent victims. These incidents highlight that vulnerabilities are inherent in our systems, making no organisation immune to such attacks. Unsurprisingly, 98% of organisations have experienced a third-party breach within the past two years. These breaches […]
Many Gmail Accounts Are Getting Hacked Despite 2FA and Google Suggests the Process to Recover Your Account
Hopefully it won’t happen to you, but if it does, know that there’s a way to recover access to your account. Digital Information World reports: There have been a lot of Google users complaining that their Gmail account has been hacked, even if they had 2FA enabled. One of the users said that their Gmail account got hacked […]
Data and Privacy Breaches Fuel Cyber Insurance Claims Surge
Risk & Insurance reports: Cyber insurance claims, particularly those related to data and privacy breaches, have seen a significant increase in the first half of 2024, with the U.S. accounting for 72% of large claims in H1 2024, according to Allianz Commercial’s annual cyber risk outlook. The frequency of large cyber claims — those in […]
MoneyGram now says customer data was impacted in security incident
It’s always risky to quickly claim that there’s no evidence that customer data has been compromised in a data breach incident because you may find out later that it has been. While MoneyGram confirmed a breach weeks ago, they were careful not to make any claims about whether customer data was impacted. Now there’s an […]
General Hospital Cybersecurity Requirements Take Effect in New York
A new regulation related to cybersecurity program requirements for all New York general hospitals licensed under Article 28 of the Public Health Law (PHL) took effect on October 2, 2024. All general hospitals covered by the regulation must comply with the new provisions within one year of the adoption date, except that general hospitals must […]
Severity of Ransomware Attacks Rose 68% in First Half of 2024, Report Shows
Claims Journal reports: Ransomware claims severity spiked by 68% to an average loss of $353,000, according to a new report by a cyber insurance provider. Coalition published its 2024 Cyber Claims Report: Mid-year Update, which details emerging cyber trends and their impact on policyholders through the first half of 2024. The frequency of using ransomware as […]