The Wall Street Journal reports that an end is in sight to a consolidated federal class-action lawsuit against MGM Resorts International stemming from data breaches in 2019 and 2023. A federal court has given preliminary approval to a $45 million settlement. Hackers broke into the resort operator’s systems twice, according to the suit filed in the […]
NPR reports that a U.S. Justice Department investigation of a global hacking campaign that targeted prominent American climate activists took a turn in court this week due to an allegation that the hacking was ordered by a lobbying firm working for ExxonMobil. The hacking was allegedly commissioned by a Washington, D.C., lobbying firm, according to a lawyer representing […]
Bleeping Computer reports: UK telecommunications company TalkTalk is investigating a third-party supplier data breach after a threat actor began selling alleged customer data on a hacking forum. “As part of our regular security monitoring, given our ongoing focus on protecting customers’ personal data, we were made aware of unexpected access to, and misuse of, one […]
The Minnesota Star Tribune reports: UnitedHealth Group says the impact from the cyberattack last year at its Change Healthcare subsidiary is much wider than previously understood, affecting roughly 190 million patients — up from previous estimates of about 100 million people. The updated tally extends the scope beyond what was previously described by company Chief Executive Andrew […]
On December 28, PowerSchool discovered that its Student Information System (SIS) program had been compromised. Since then, more and more schools in the U.S. and Canada have been notifying parents and students that student information stored in the system — including a lot of historical data on former students — was involved in the breach. […]
PayPal’s Cybersecurity Failures Led to the Exposure of Customers’ Social Security Numbers January 23, 2025 New York State Department of Financial Services Superintendent Adrienne A. Harris today announced that PayPal, Inc. (PayPal) will pay a $2 million penalty to New York State for violations of DFS’s Cybersecurity Regulation. An investigation determined PayPal failed to use qualified […]
What third party, you wonder? They don’t say. Recorded Future reports: A recent outage affecting the government technology contractor Conduent was due to a cyberattack that compromised the company’s operating systems. A Conduent spokesperson told Recorded Future News the company recently “experienced an operational disruption due to a third-party compromise” of one of their operating […]
Deloitte has already been sued over the breach involving Rhode Island benefits recipient data. But now there’s a bigger suit. GOLOCAL/Prov Rhode Island reports: The law firm that negotiated the $246 billion settlement with big tobacco is now suing Deloitte over the recent massive data breach in Rhode Island. In a 65-page complaint filed this week in […]
The PowerSchool breach that is giving school districts throughout the U.S. major headaches also affected school districts in Canada. The Toronto Star reports: Toronto’s public school board says personal information of its students dating back to 1985 may have been breached during a recent cybersecurity incident that affected many districts across North America. … The […]
Now we are first finding out how scary the Snowflake breach was for FBI agents and informants whose information may have been caught up in the AT&T downstream attack. Bloomberg reports: FBI leaders have warned that they believe hackers who broke into AT&T Inc.’s system last year stole months of their agents’ call and text logs, setting off […]
