The Guardian reports that a significant cyberattack affecting the Legal Aid Agency in the UK affects both legal aid applicants and legal aid providers: The personal data of hundreds of thousands of legal aid applicants in England and Wales dating back to 2010, including criminal records and financial details, has been accessed and downloaded in a “significant” […]
TechCrunch reports: Pharmaceutical maker Regeneron announced Monday it will buy genetic testing company 23andMe for $256 million following a bankruptcy auction. Regeneron said it will acquire 23andMe’s genomics service and its bank of 15 million customers’ personal and genetic data as part of the deal. The pharma giant said it plans to use the 23andMe customer data […]
Newspoint reports on a dangerous new WhatsApp scam that can drain your bank account — through a single photo: Read more at MSN to learn how to protect yourself from this scam.
The Register reports: The call came into the help desk at a large US retailer. An employee had been locked out of their corporate accounts. But the caller wasn’t actually a company employee. He was a Scattered Spider criminal trying to break into the retailer’s systems – and he was really good, according to Jon […]
The Register reports: A ransomware attack at a Middle Eastern business partner of payroll company ADP has led to customer data theft at Broadcom, The Register has learned. It’s understood Broadcom’s HR department has begun the process of informing current and former staff who are affected by the September ransomware attack at Business Systems House (BSH). Broadcom […]
Brian Krebs reports: In what experts are calling a novel legal outcome, the 22-year-old former administrator of the cybercrime community Breachforums will forfeit nearly $700,000 to settle a civil lawsuit from a health insurance company whose customer data was posted for sale on the forum in 2023. Conor Brian Fitzpatrick, a.k.a. “Pompompurin,” is slated for resentencing next month […]
Footnotes in CrowdStrike’s forensics report offer troubling details of Deloitte’s handling of incident logs. Rhode Island Current reports that the attack on RIBridges triggered hundreds of firewall alerts during the five months that attackers were in the network and were transferring gigabytes of data. But the state’s vendor, Deloitte, did not know the system had […]
Coinbase says they are protecting their customers and standing up to the extortionists. Tl;dr: Cyber criminals bribed and recruited a group of rogue overseas support agents to steal Coinbase customer data to facilitate social engineering attacks. These insiders abused their access to customer support systems to steal the account data for a small subset of […]
How-to Geek reports, “There have been rumors about a large-scale data breach impacting nearly 90 million Steam accounts. However, the original source was debunked, so you probably don’t have anything to worry about.” But if you want to err on the side of caution, it wouldn’t hurt to change your password for Steam and anywhere […]
Bleeping Computer reports that an unnamed 45-year-old suspect linked to DoppelPaymer ransomware attacks targeting Dutch organizations in 2021 has been arrested by Moldovan police. Police officers searched the suspect’s home and car on May 6, seizing an electronic wallet, €84,800, two laptops, a mobile phone, a tablet, six bank cards, and multiple data storage devices. […]
