Data Breach News - The Data Breach Times

February 20, 2024

939 views 2 mins 0

Breach notification laws do little to nothing to reduce breaches, study claims

Tech Times reports: A study by researchers from the University of Minnesota and George Mason University has reportedly claimed that US cybersecurity laws on breach notifications have little to no effect on curbing data breach incidents in the country. The legislation that requires businesses to tell customers if their data has been compromised, known as breach notification laws (BNLs), enacted by governments of […]

Data Breach News, Legal News, Malware Ransomware

February 20, 2024

996 views 3 mins 0

Law enforcement offers $10 million reward for info on BlackCat

The biggest cybercrime news of the week may be the takedown of LockBit3.0, but U.S. law enforcement also made news last week by announcing rewards for information leading to the identification or location of leaders of AlphV (BlackCat) or those who participate in it. Here is the press release from the U.S. Department of State: […]

Data Breach News

February 15, 2024

919 views 15 secs 0

The Pentagon is notifying individuals affected by 2023 email data breach

GovExex reports: The Defense Department is notifying some 26,000 individuals who were impacted by a data breach that was linked to a now secured server whose contents were released online last year, a spokesperson confirmed to Nextgov/FCW. The Pentagon’s Defense Intelligence Agency on Feb. 1 issued a notice to those affected — including current and former employees — […]

Data Breach News, Malware Ransomware

February 03, 2024

1286 views 5 mins 0

Infosys McCamish Systems notifying 57,028 Bank of America customers of ransomware attack

More than 57,000 people enrolled in Bank of America deferred compensation plans are being notified of a data breach that occurred in early November 2023. The incident involved their Atlanta-based service provider, Infosys McCamish Systems LLC (“IMS”). Bank of America’s system was not affected or compromised. IMS is the U.S. subsidiary of Infosys BPM, an […]

News, Data Breach News, Legal News

February 02, 2024

438 views 7 mins 0

FTC Order Will Require Blackbaud to Delete Unnecessary Data, Boost Safeguards to Settle Charges its Lax Security Practices Led to Data Breach

Federal Trade Commission building, Washington D.C.

FTC says company’s poor security allowed hacker to steal sensitive data of millions of consumers, go undetected for months South Carolina-based Blackbaud Inc. will be required to delete personal data that it doesn’t need to retain as part of a settlement with the Federal Trade Commission over charges that the company’s lax security allowed a […]

Legal News, Data Breach News

February 02, 2024

1011 views 11 secs 0

Ex-CIA software engineer sentenced to 40 years for giving secrets to WikiLeaks

The Guardian reports: A former Central Intelligence Agency (CIA) software engineer who was convicted for carrying out the largest theft of classified information in the agency’s history and of charges related to child abuse imagery was sentenced to 40 years in prison on Thursday. The 40-year sentence by US district judge Jesse Furman was for […]

News, Data Breach News, Legal News

January 29, 2024

936 views 20 secs 0

Ex-IRS Contractor Who Leaked Trump, Griffin Tax Data Gets Five Years in Prison

Bloomberg News reports: A former Internal Revenue Service contractor who stole and leaked the tax returns of former President Donald Trump, Ken Griffin, Elon Musk and other billionaires was sentenced to five years in prison. Charles Littlejohn, 38, pleaded guilty Oct. 12 to stealing Trump’s tax data from the IRS and leaking it to the New York Times. He also admitted taking tax […]

Legal News, Data Breach News

January 28, 2024

905 views 6 secs 0

SolarWinds Seeks Dismissal of ‘Unfounded’ SEC Cybersecurity Suit

Bloomberg Law reports on a case that probably has a lot of CISOs somewhat nervous: SolarWinds Corp. issued a full-throated denial of wrongdoing in how it handled one of the worst cyberattacks in history in a Friday court filing seeking the dismissal of US Securities and Exchange Commission allegations that its software security representations defrauded […]

Data Breach News

January 26, 2024

873 views 11 secs 0

23andMe admits it didn’t detect cyberattacks for months

23andMe continues to garner negative press for its incident response. It seems like only yesterday that they were trying to blame victims for reusing passwords as the cause of a credential stuffing attack that resulted in the theft of ancestry and genetic data of almost seven million users. But how will they explain to regulators […]

Data Breach News, News

January 25, 2024

383 views 3 mins 0

HPE: Russian hackers breached its security team’s email accounts

Bleeping Computer reports: Hewlett Packard Enterprise (HPE) disclosed today that suspected Russian hackers known as Midnight Blizzard gained access to the company’s Microsoft Office 365 email environment to steal data from its cybersecurity team and other departments. Midnight Blizzard, aka Cozy Bear, APT29, and Nobelium, is a Russian state-sponsored hacking group believed to be part […]