If you have ever car-shopped online or looked for information on the prices or value of a car, you’ve probably checked out Edmunds.com. Edmunds, headquartered in Santa Monica, California, was acquired by CarMax in 2021. On or about August 19, 2025, Edmunds learned that a vendor they use for proprietary messaging was the victim of […]
The Record reports: Polish authorities detained a Russian citizen suspected of hacking into the IT systems of local companies — the latest in a series of cases Warsaw has linked to Moscow’s expanding sabotage and espionage efforts. Interior Minister Marcin Kierwiński said Thursday that police arrested the man for breaching security systems to gain access to company […]
Bitdefender reports: A ransomware attack on Crisis24, the vendor behind the CodeRED emergency alert system, has left towns and cities across the United States without a core public-warning tool. CodeRED is widely used to push urgent notifications for severe weather, public safety incidents, missing persons and other critical situations. In the aftermath of the intrusion, […]
The Illinois Times reports: A court hearing is scheduled Dec. 4 to finalize a $7.6 million settlement that would pay people whose personal information was seized by hackers in a targeted cyber attack that temporarily crippled Hospital Sisters Health System in 2023. The nonprofit health system, based in rural Sangamon County near Riverton, discovered the […]
The Register reports: Two London councils are scrambling for answers after declaring a cybersecurity issue that began on Monday. The Royal Borough of Kensington and Chelsea (RBKC) and Westminster City Council (WCC) confirmed they are investigating an “incident”, admitting “we don’t have all the answers yet, as the management of this incident is still ongoing.” […]
The Record reports: A lack of liability for software vendors is among the most pressing issues putting Britain’s economic and national security at risk, an influential committee of lawmakers warned on Monday. The report by the Business and Trade Committee says economic threats facing the United Kingdom are “multiplying — and, in the years ahead, will grow […]
Reuters reports: Comcast will pay a $1.5 million fine after a vendor breach exposed personal data from 237,000 current and former customers, the Federal Communications Commission said on Monday. The FCC said a debt collector used by Comcast until 2022, Financial Business and Consumer Solutions, suffered a 2024 data breach that exposed personal information of Comcast […]
Covington and Burling writes: On November 20, 2025, the Securities and Exchange Commission (“SEC”) announced that it was voluntarily dismissing the case it brought against SolarWinds Corp. (“SolarWinds”) and its information security officer, Timothy Brown, regarding the company’s security practices and related statements in connection with the “Sunburst” cybersecurity incident. The SEC stated in a […]
The New York Times reports: Some of the nation’s biggest banks were scrambling on Saturday night to assess the fallout from a large-scale hack of a vendor whose compromise could expose sensitive customer data. The vendor, SitusAMC, has been deployed by hundreds of banks and other lenders to help originate and collect money from real […]
Bleeping Computer reports: American cybersecurity firm CrowdStrike has confirmed that an insider shared screenshots taken on internal systems with hackers after they were leaked on Telegram by the Scattered Lapsus$ Hunters threat actors. However, the company noted that its systems were not breached as a result of this incident and that customers’ data was not […]
