The Southern Maryland Chronicle reports: The Federal Trade Commission finalized a settlement with GoDaddy on May 23, 2025, addressing allegations that the web hosting provider misled consumers about its data security practices, leading to multiple data breaches. The order, approved unanimously by a 3-0 vote, mandates significant security upgrades and prohibits GoDaddy from making false […]
A trove of breached data, which has now been taken down, includes user logins for platforms including Apple, Google, and Meta. Among the exposed accounts are ones linked to dozens of governments. WIRED reports: The possibility that data could be inadvertently exposed in a misconfigured or otherwise unsecured database is a longtime privacy nightmare that has been difficult to fully address. […]
BleepingComputer reports: A 3AM ransomware affiliate is conducting highly targeted attacks using email bombing and spoofed IT support calls to socially engineer employees into giving credentials for remote access to corporate systems. This tactic was previously linked to the Black Basta ransomware gang and later observed in FIN7 attacks, but its effectiveness has driven a wider […]
The Register reports: Scotland’s West Lothian Council has confirmed that data was stolen from its education network after the Interlock ransomware group claimed responsibility for the intrusion earlier this month. The local authority, governing a region bordering Edinburgh, originally said that there was no evidence to suggest that data had been taken when it first […]
Insurance Journal reports an insider data breach that will leave many people wondering exactly what a government contractor did in terms of background checks on its employees. In this case, the two allegedly rogue employees at Opexus (formerly known as AINS) were twin brothers who were previously convicted and served time for hacking crimes: A […]
The U.S. Attorney’s Office for the District of Massachusetts announced yesterday that Matthew D. Lane, 19, a student at Assumption University in Worcester, Mass., was charged and has agreed to plead guilty in connection with hacking into the computer networks of two U.S.-based companies and extorting the companies for ransoms. The two companies were not named in the Information […]
Hundreds of former subpostmasters are to be compensated by the Post Office after it accidentally leaked their names and addresses online last year. Some data leaks are more sensitive or problematic than others. A leak on the Post Office’s site is one of the more problematic ones. The Bolton News reports: The Post Office confirmed […]
The Sun reports that Kuala Lumpur City Hall (DBKL) has denied a claim that its online service system was hacked and held hostage to a ransom demand of USD $55 million (RM236.17 million): Kuala Lumpur Mayor Datuk Seri Dr Maimunah Mohd Sharif said DBKL’s online service system had indeed experienced technical disruptions but there was […]
The Guardian reports that a significant cyberattack affecting the Legal Aid Agency in the UK affects both legal aid applicants and legal aid providers: The personal data of hundreds of thousands of legal aid applicants in England and Wales dating back to 2010, including criminal records and financial details, has been accessed and downloaded in a “significant” […]
LBC reports that a major UK supermarket supplier that stocks Tesco, Sainsbury’s and Aldi has been ‘held to ransom’ by hackers: Peter Green Chilled was hit by the ‘cyber incident’ on Wednesday evening last week. The supplier said no orders would be processed on Thursday, although any order prepared on Wednesday would be sent. Managing […]
