LATEST POST
Thousands of Congressional Staffers Had Their Information Stolen or Leaked on the Internet
Newsweek reports login credentials or information on more than 3,000 Congressional staffers has been leaked on the dark web as a result of various leaks or breaches. Internet security firm Proton found over 1,800 passwords used by staffers in Congress available on the dark web, through an investigation of exposed accounts among U.S. political staffers, according to The Washington […]
Arkansas City water plant hit by cyberattack
KWCH in Kansas reports what sounds like a ransomware attack: The City of Arkansas City maintains that drinking water is safe in the city after a cyberattack on Sunday. Shana Adkisson, communications director with the City of Arkansas City, said around 5:30 a.m. on Sunday, an employee at the water treatment facility noticed that a […]
MoneyGram confirms its outage is due a cyberattack
Days after customers started complaining about outages, MoneyGram has confirmed that it was the victim of a cyberattack. Bleeping Computer reports: “MoneyGram recently identified a cybersecurity issue affecting certain of our systems,” reads the announcement. “Upon detection, we immediately launched an investigation and took protective steps to address it, including proactively taking systems offline, which […]
New Data Breach Notification Obligations for PA – and a New Reporting Portal
New data breach reporting and mitigation requirements go into effect in Pennsylvania on September 26, and there is a new portal for reporting breaches to the state. Lawyers at SheppardMullin provide a timely reminder: Pennsylvania AG Michelle Henry announced yesterday the launch of an online portal for businesses to report data breaches to the AG’s office. The […]
AT&T to pay $13 million to settle FCC probe over cloud data breach
CBS News reports: AT&T has agreed to pay $13 million to settle a federal investigation into whether the mobile phone service provider failed to protect customer information in connection with a data breach last year, the Federal Communications Commission said Tuesday. The FCC’s probe focused on how AT&T’s privacy, cybersecurity and vendor management practices […]
Hackers Force Chrome Users To Hand Over Google Passwords, Here’s How
Forbes reports: Newly published research has revealed how threat actors are using a devious new technique to force Chrome browser users to reveal their Google account passwords out of nothing more than sheer frustration. The credential-stealing campaign, which uses malware called StealC, locks the user’s browser in kiosk mode while blocking both the F11 and […]
New Security Alert Warns Against Hackers Using CAPTCHA Test That Manipulates Windows Users
By now, most people have encountered CAPTCHA tests to prove they are human and not bots. Some tests ask us to click on a particular object or type in a string of numbers or letters to match a sample, but watch out for what may appear to be a CAPTCHA test that is really a […]
23andMe settles data breach lawsuit for $30 million (1)
Update of December 5: A federal judge granted early approval to a $30 million settlement. The case is In re 23andMe Inc Customer Data Security Breach Litigation, U.S. District Court, Northern District of California, No. 24-md-03098. The official settlement website will be at https://www.23andmedatasettlement.com/ where those affected can get information on who is eligible to […]