Some GrubHub customers and drivers have had their personal informatoin snatched in a third-party breach. Candid.Technology reports: GrubHub, one of the leading food delivery platforms in the United States, has disclosed a security breach linked to a third-party contractor, resulting in unauthorised access to user contact information. The breach resulted in unauthorised access to the […]
Here are just two of many recent proposed settlements in data breach litigation: Arthur J. Gallagher & Co. and and Gallagher Bassett Services, Inc. Settlement: Arthur J. Gallagher & Co. agreed to a $21 million class action lawsuit settlement to resolve claims it failed to prevent a 2020 data breach that compromised sensitive employee and client […]
Bleeping Computer reports that Globe Life is notifying an additional 850,000 people of a breach it discovered last year: On June 13, 2024, the company discovered during a security review of its networks that it had been compromised by hackers who had gained unauthorized access to one of its web portals. Globe Life shared in October the first […]
NDM News Network reports that Tata Technologies, a subsidiary of Tata Motors, is responding to a ransomware attack that resulted in the temporary suspension of some services: Tata Technologies is currently working to investigate the situation and reinforce its cybersecurity measures to prevent future disruptions and ensure the protection of its digital infrastructure. The company […]
“This database contained a significant volume of chat history, backend data and sensitive information, including log streams, API Secrets, and operational details.” It appears that DeepSeek — the same AI platform that sent tech stocks crashing because it might be better and was definitely cheaper than U.S. AI platforms — could not get basic security […]
TechCrunch reports that the engineering giant and government contractor was impacted significantly for six weeks following a ransomware attack in November: U.S. engineering firm ENGlobal has confirmed that hackers accessed “sensitive personal information” from its systems during a November 2024 cyberattack. ENGlobal, which provides engineering and automation services to the federal government and critical infrastructure organizations, […]
HackRead reports that Hewlett Packard Enterprise (HPE) has been hacked for a second time by the threat actor known as IntelBroker: IntelBroker, a notorious hacker linked to prior high-profile cyberattacks, has announced an alleged new data breach of Hewlett-Packard Enterprise (HPE). The hacker claims to have accessed and cloned new data from HPE’s repositories. Although […]
From Aoki Holdings in Japan, this updated statement of January 28, 2025: Additional information can be found at Aoki Holdings (.pdf). Those responsible for the attack have not been publicly identified or claimed responsibility for the attack. Aoki’s statement does not indicate whether they received an extortion demand or not.
The Wall Street Journal reports that an end is in sight to a consolidated federal class-action lawsuit against MGM Resorts International stemming from data breaches in 2019 and 2023. A federal court has given preliminary approval to a $45 million settlement. Hackers broke into the resort operator’s systems twice, according to the suit filed in the […]
NPR reports that a U.S. Justice Department investigation of a global hacking campaign that targeted prominent American climate activists took a turn in court this week due to an allegation that the hacking was ordered by a lobbying firm working for ExxonMobil. The hacking was allegedly commissioned by a Washington, D.C., lobbying firm, according to a lawyer representing […]
