31 million users’ usernames, email addresses and salted-encrypted passwords are out there The Register reports: The Internet Archive had a bad day on the infosec front, after being DDoSed and exposing user data. On Wednesday afternoon US time the outfit’s digital library Brewster Kahle revealed a DDoS attack had made the site unavailable. The Register understand the outage may […]
It’s always risky to quickly claim that there’s no evidence that customer data has been compromised in a data breach incident because you may find out later that it has been. While MoneyGram confirmed a breach weeks ago, they were careful not to make any claims about whether customer data was impacted. Now there’s an […]
A new regulation related to cybersecurity program requirements for all New York general hospitals licensed under Article 28 of the Public Health Law (PHL) took effect on October 2, 2024. All general hospitals covered by the regulation must comply with the new provisions within one year of the adoption date, except that general hospitals must […]
Brian Montgomery is a partner at Pillsbury and a former NYDFS deputy superintendent. Mark Krotoski is a partner at Pillsbury and former national coordinator for the Computer Hacking and Intellectual Property Program at the Department of Justice. In an article on Bloomberg Law, they write: Cybersecurity regulations can be a constantly moving target, with digital advances and […]
The Record reports: None of the water or wastewater facilities run by the American Water Works company were affected by a cyberattack that began last week, according to a statement released on Monday. The company, which supplies water to millions of Americans, filed documents with the Securities and Exchange Commission (SEC) on Monday notifying the public of […]
Bleeping Computer reports: Comcast Cable Communications and Truist Bank have disclosed they were impacted by a data breach at FBCS, and are now informing their respective customers that their data has been compromised. […] According to a notice submitted to the Maine authorities, 273,703 Comcast customers were impacted by the breach. “FBCS’s investigation discovered that files downloaded […]
A recent press release from the Dutch DPA (Autoriteit Persoonsgegevens) emphasizes that Dutch organizations need to do better in providing breach victims with timely information that they need to protect themselves. If the Dutch DPA thinks warnings or alerts sent to victims more than three weeks after a breach is “way too slow,” The Data […]
Datatilsynet is Norway’s Data Protection Authority. Inspection of its website indicates that it has not imposed many monetary penalties in recent years for violations of the Personal Data Act 2000. After 2021, in which it reported 37 actions, it issued only 12 reports in 2023, and only 7 so far in 2024. Here are two […]
Reuters reports that Chinese hackers accessed the networks of U.S. broadband providers and obtained information from systems that the federal government uses for court-authorized wiretapping. The Wall Street Journal first reported the story on Saturday. Verizon Communications, AT&T, and Lumen Technologies are among the telecoms companies whose networks were breached by the recently discovered intrusion, […]
Severity of Ransomware Attacks Rose 68% in First Half of 2024, Report Shows
Claims Journal reports: Ransomware claims severity spiked by 68% to an average loss of $353,000, according to a new report by a cyber insurance provider. Coalition published its 2024 Cyber Claims Report: Mid-year Update, which details emerging cyber trends and their impact on policyholders through the first half of 2024. The frequency of using ransomware as […]