Although the Federal Trade Commission (FTC) has the authority to investigate data breaches, some entities they have investigated have pushed back against the regulator. In 2013, FTC filed a complaint against LabMD for allegedly failing to protect consumer’s data. When the government found for itself in a proceeding by an administrative law judge, LabMD sued […]
Less than two weeks after Omni Hotels & Resorts admitted that they had been the victim of a cyberattack, a known ransomware gang has publicly claimed that they were responsible for the attack. A post on Daixin Team’s dark web leak site claimed they had “Sensitive data. (Including all records of all visitors from 2017 […]
Sisense Security Week reports: The US government cybersecurity agency CISA on Thursday issued a red-alert for what appears to be a massive supply chain breach at Sisense, a New York company that sells big-data analytics tools to businesses. In a cryptic note, CISA warned of a recent “compromise of Sisense customer data” that was discovered […]
While Change Healthcare UnitedHealth Group claims it continues to make progress in mitigating the impact to consumers and care providers of a massive cyberattack in February on its system and services, Radiology Business provides a grimmer picture of the impact and recent situation: The incident first occurred in February, shutting down the nation’s largest clearinghouse […]
Remember all the headlines about AT&T customer data of more than 70 million people showing up on the internet again after a previous leak? Now AT&T has filed a notice with the Maine Attorney General’s Office about the incident. Here are two things to note about their notification to Maine: AT&T filed the notification The […]
While Change Healthcare continues to try to restore all services following a damaging ransomware attack in February, they now face a new and concerning threat. No Honor Among Thieves On March 4, a threat actor calling themself “notchy” claimed that they had been involved in the attack on Change Healthcare and that their job was […]
Updated April 4: Omni Hotels subsequently acknowledged that they were hit by a cyberattack. They have published an FAQ on the incident that says most services have been restored. They have not yet determined whether any guest data on their servers was accessed or acquired in the attack. Original article follows: Omni Hotels & Resorts […]
“It’s not a matter of ‘if.’ It’s just a matter of ‘when,’” people say about data breaches. The same could be said for potential class action lawsuits that follow announcements of big breaches. This week, AT&T is among those who are being sued over a big breach. Bloomberg reports: COURT: N.D. TexTRACK DOCKET: No. 3:24-cv-00757 (Bloomberg Law subscription) AT&T […]
WFAA reports that AT&T has begun notifying about 7.6 million current AT&T account holders and 65.4 million former account holders whose data recently leaked online. The data set includes information such as Social Security numbers. It is unknown if the data “originated from AT&T or one of its vendors,” the company said in a recent […]
A draft of federal cyber incident reporting rules for the Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA) has been posted in the Federal Register. It’s not exactly light reading, weighing in at a whopping 447-page Notice of Proposed Rulemaking. The rules will require critical infrastructure entities to notify the federal government of […]
