Data Breach News, Legal News, News
February 22, 2025
923 views 3 mins 0

HHS Office for Civil Rights Imposes a $1,500,000 Civil Money Penalty Against Warby Parker in HIPAA Cybersecurity Hacking Investigation

The U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR) announced a $1,500,000 civil money penalty against Warby Parker, Inc., a manufacturer and online retailer of prescription and non-prescription eyewear, concerning violations of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Security Rule, following the receipt of a breach […]

Data Breach News, Legal News, Malware Ransomware
February 21, 2025
847 views 33 secs 0

Judge Sets Deadline for Motions to Dismiss Claims in Change Healthcare Data Breach Lawsuits

The HIPAA Journal reports: A District Court Judge has set a March 2025 deadline for Change Healthcare to file motions to dismiss certain claims raised in multiple complaints in response to its February 2024 ransomware attack and data breach. In February 2024, Change Healthcare suffered a ransomware attack that resulted in file encryption and the […]

Legal News, Data Breach News
February 17, 2025
839 views 2 mins 0

Brightline to pay $7M to resolve Fortra hack lawsuit

2023 was a bad year for commercial file transfer software apps because the Clop ransomware gang kept managing to find zero-day vulnerabilities to exploit. One of their campaigns involved Fortra’s GoAnywhere software. Even though Fortra issued a patch for CVE-2023-0669 within a week of discovery, there were many victims, including Brightline. Now TechTarget reports that […]

News, Legal News
February 15, 2025
930 views 8 secs 0

Ninth Circuit upholds $725M Facebook settlement in Cambridge Analytica case, rejects objectors’ appeal

Courthouse News Service has an update on the Cambridge Analytica settlement. The Ninth Circuit Court of Appeals ruled Thursday afternoon that a federal court did not abuse its discretion in 2023 when it approved a $725 million settlement between Facebook, Inc. — now known as Meta — and a settlement class concerning the Cambridge Analytica scandal, an event in which […]

Commentaries and Analyses, Data Breach News, Legal News
February 15, 2025
264 views 2 mins 0

Should India adopt a threshold-based data breach reporting?

MediaNama reports: India needs a threshold-based system for data breach reporting, speakers argued at MediaNama’s discussion on the draft Digital Personal Data Protection Rules (DPDP Rules, 2025) on February 7. This came as a comment during the session on the draft rules around data breaches. MediaNama conducted this discussion under the Chatham House Rule. (Chatham […]

Legal News, Data Breach News
February 14, 2025
793 views 46 secs 0

Dutch police say they took down 127 servers used by sanctioned hosting service

The Record reports; Police in the Netherlands say they seized 127 servers this week that were used by Zservers, a bulletproof hosting service that was the subject of international sanctions issued Tuesday. The raid on Wednesday at the Paul van Vlissingenstraat data center in Amsterdam “followed a long-term digital investigation into the activities of a […]

Legal News, Data Breach News, News
February 11, 2025
898 views 37 secs 0

‘The largest data breach in American history’: Attorney General Tong sues Musk, Trump over DOGE data overreach

WGTC reports: Attorney General William Tong has announced that Connecticut is joining several other states in filing a lawsuit against Donald Trump’s administration and the overreach of his Elon Musk-led Department of Government Efficiency.  Tong is one of 19 Democratic attorneys general who have sued Trump in an effort to block Musk from accessing the systems […]

Legal News, Data Breach News
February 03, 2025
965 views 2 mins 0

Recent settlements reached in two data breach cases

Here are just two of many recent proposed settlements in data breach litigation: Arthur J. Gallagher & Co. and  and Gallagher Bassett Services, Inc. Settlement: Arthur J. Gallagher & Co. agreed to a $21 million class action lawsuit settlement to resolve claims it failed to prevent a 2020 data breach that compromised sensitive employee and client […]