Republican senator sues Booz Allen over leaked tax returns
Axios reports: Read more at Axios.
Christian Dior class action settlement
WPIX reports: A luxury fashion company that sells clothing, accessories and cosmetics has agreed to a class action settlement to resolve claims following a 2025 data breach that compromised customer information. The settlement benefits customers who received a notice from Christian Dior stating that their personal information may have been compromised in a data breach in Jan. […]
Trump Signs Executive Order Aimed at Cybersecurity
The Wall Street Journal reports: President Trump signed an executive order Friday directing diplomatic, law enforcement and national security agencies to dismantle cybercriminal outfits. The order frames cybercrime groups, including Southeast Asian romance-scam farms and ransomware gangs, as transnational criminal organizations. It directs the Attorney General to give priority to prosecutions of cyber-enabled fraud and compels the […]
LeakBase Forum Seized as Part of Global Coordinated Actions
The Department of Justice announced yesterday the seizure of the LeakBase database, one of the world’s largest online forums for cybercriminals to buy and sell stolen data and cybercrime tools. According to an affidavit unsealed on March 3, the LeakBase forum had over 142,000 members and more than 215,000 messages between members. Available on the […]
Federal Court Refuses to Slice Up CiCi’s Cyber Extortion Coverage
From the Hunton Insurance Recovery Blog: In the rarely litigated space of cyber insurance, the Northern District of Texas issued a win for cyber policyholders this week, offering a clear reminder to insurers that if they want to restrict coverage, they must draft the policy to clearly do so. In CiCi Enterprises, LP v. HSB Specialty […]
Connecticut Senate Bill Raises the Stakes on Data Breach Response for “Massive” Breaches
If a bill introduced in the Connecticut Senate ever becomes law, there will be new requirements for entities whose breaches affect more than 100,000 Connecticut residents. As attorneys from Ballard & Spahr explain: Read more at JD Supra. The second provision above is certain to raise a lot of concerns and opposition. The language of […]
MediMap seeks urgent court orders after cyber patient data incident
Insurance Business Magazine reports: Digital medicines platform MediMap is seeking urgent court orders in New Zealand after an individual claiming to be behind a cyber incident circulated what appears to be patient information to news organisations – an incident that is drawing attention to cyber risk, privacy exposure, and the role of cyber insurance across […]
Norton Healthcare to Pay $11M to Settle BlackCat Lawsuit
Bank InfoSecurity has an update on the Norton Healthcare breach in 2023: Norton Healthcare, which operates nine hospitals and 480 other care facilities in Kentucky and Indiana, has agreed to pay $11 million to settle class action litigation triggered by a 2023 data theft attack by ransomware-as-a-service gang Alphv/BlackCat that affected nearly 2.5 million people. […]
Polish police detain alleged cybercriminal with Phobos ransomware ties
The Record reports: A 47-year-old man was arrested in Poland for his alleged involvement with the Phobos ransomware operation. … Phobos was a ransomware gang that attacked more than 1,000 organizations worldwide, targeting hospitals, schools, government agencies and more. U.S. prosecutors previously said operators of Phobos and a related strain called 8Base collected upwards of […]
South Korea slaps $25M fine on Dior, Louis Vuitton, Tiffany over Salesforce breach
Bleeping Computer reports: South Korea has fined luxury fashion brands Louis Vuitton, Christian Dior Couture, and Tiffany $25 million for failing to implement adequate security measures, which facilitated unauthorized access and the exposure of data belonging to more than 5.5 million customers. All three brands are part of the Louis Vuitton Moët Hennessy (LVMH) group […]