WebProNews reports on an unusual, and praiseworthy, response to a cyberattack with a ransom demand. They erroneously describe it as a ransomware attack, but no encryption was involved. ShinyHunters exfiltrated data and then attempted to ransom it: In a striking rebuke to cybercriminals, Checkout.com’s chief technology officer has turned a ransomware attack into an opportunity […]
The Record reports: The Russian Embassy in Thailand said it is seeking access to a Russian citizen reportedly detained on the resort island of Phuket at the request of the United States over suspected cybercrimes. “At the moment, we are clarifying the circumstances of this case and working with the Thai side to arrange consular […]
Bleeping Computer reports: DoorDash has disclosed a data breach that hit the food delivery platform this October. Beginning yesterday evening, DoorDash, which serves millions of customers across the U.S., Canada, Australia, and New Zealand, started emailing those impacted by the newly discovered security incident. Your personal information affected “On October 25, 2025, our team identified a cybersecurity […]
The Register reports: The number of successful cyber insurance claims made by UK organizations shot up last year, according to the latest figures from the industry’s trade association. The Association of British Insurers (ABI) said £197 million ($259 million) in cyber insurance payouts were made to victimized organizations in 2024, up from £59 million ($77 […]
The Oregonian reports: Intel says a former employee downloaded thousands of documents shortly after the company fired him in July, many of them classified as “Top Secret.” Jinfeng Luo lived in Seattle and had worked as a software developer for Intel since 2014, according to a lawsuit the company filed against him in Washington federal […]
PC Mag reports: The Washington Post has confirmed it fell victim to a large-scale cybercrime campaign that targeted Oracle’s business applications, joining Harvard University and American Airlines-owned carrier Envoy, which announced similar breaches last month. The news, first reported by Reuters, comes after Google said in October that it believes around 100 companies were affected by the hacking campaign, and that “large amounts […]
In 2022, Illuminate Education, Inc. suffered a major data breach. Now three states have announced a settlement with the edtech vendor. From the California Attorney General Rob Bonta’s office:
A free event on November 19, 2025 by ACEDS NY Metro Chapter. Registration is required. Join us for an insightful discussion on data breach management featuring industry experts: ■ Harry Buck | Founder and CEO of Legal Outsourcing 2.0, Inc. Harry is an experienced litigator, and the Founder and CEO of Legal Outsourcing 2.0. where he […]
SonicWall reports: In early September, SonicWall detected suspicious activity related to the downloading of backup firewall configuration files stored in a specific cloud environment. Our incident response team immediately activated our established response protocols, engaged Mandiant, a leading cybersecurity response firm, and notified our global partners and customers directly about the incident and remediation steps to protect their customers. In addition to frequent and transparent communication with partners and customers, SonicWall […]
NextGov reports: The Congressional Budget Office, Capitol Hill’s nonpartisan accounting service that delivers financial assessments for legislation, was accessed in a hack potentially tied to a foreign hacker group. “The Congressional Budget Office has identified the security incident, has taken immediate action to contain it, and has implemented additional monitoring and new security controls to […]
