Charlie Osborne reports: Customers of ABS-CBN may be facing the possibility of the theft of their financial data due to a payment skimmer which has been discovered in the major Filipino broadcaster’s online store. According to Dutch security researcher Willem “gwillem” de Groot, the payment skimmer has been active since August this year. ABS-CBN is…
Month: September 2018
Ransomware attacks against hospitals: A timeline
Seth Rosenblatt and Pinguino Kolb report: Ransomware attacks are serious business for hackers―and often completely avoidable. Hospitals and health care systems, now in the business of collecting patient data as a side effect of treating physical maladies, struggle to keep that information secure. While there’s no ransomware-specific cost estimate to the health care business, Verizon’s…
The Mirai Botnet Architects Are Now Fighting Crime With the FBI
Garrett M. Graff reports: The three college-age defendants behind the creation of the Mirai botnet—an online tool that wreaked destruction across the internet in the fall of 2016 with unprecedentedly powerful distributed denial of service attacks—will stand in an Alaska courtroom Tuesday and ask for a novel ruling from a federal judge: They hope to be…
Commentary: What Constitutes Negligence in Company Data Breaches?
Amy L. Hanna Keeney of Adams and Reese writes about an opinion in a court case that stemmed from one of TheDarkOverlord’s hacks: their attack on Athens Orthopedic Clinic (AOC). I had covered that breach extensively, including commenting on the fact that AOC did not offer any free services to patients whose data had not…
DealerBuilt Settles with New Jersey AG Over Data Breach
Hunton Andrews Kurth reports: On September 7, 2018, the New Jersey Attorney General announced a settlement with data management software developer Lightyear Dealer Technologies, LLC, doing business as DealerBuilt, resolving an investigation by the state Division of Consumer Affairs into a data breach that exposed the personal information of car dealership customers in New Jersey…
Another security breach at Grindr reveals users’ exact location
Tom Capon reports: Grindr’s security issues are once again in the spotlight as a third party app pinpointed users’ exact location. Despite constant reassurances from the app about the difficulties of exploiting their location technology, the latest security breach revealed how malicious parties can locate users. Discovered by blog Queer Europe, they used a third-party…