Lawrence Abrams reports: A free master decryptor for the REvil ransomware operation has been released, allowing all victims encrypted before the gang disappeared to recover their files for free. The REvil master decryptor was created by cybersecurity firm Bitdefender in collaboration with a trusted law enforcement partner. While Bitdefender could not share details about how they…
Author: Dissent
LA: Post-Ida cyber attack hits Jefferson Parish courts; closures to last until at least Sept. 20
Ramon Antonio Vargas reports: Some of Jefferson Parish’s key courthouses will remain closed through the week after a cyber attack shut down the courts’ computer systems in the wake of Hurricane Ida, according to authorities. The attack occurred after Ida knocked out power and internet to most of Jefferson Parish, leaving the courthouses’ computer network…
Airport Store Operator Negligence Caused Huge Damages in 2020 Hack, Class Action Lawsuit Alleges
Anne Bradley-Smith reports: Airport store operator, Paradies Shops LLC, which runs more than 850 retail and 170 restaurant locations in more than 100 airports across the United States, was negligent with employee data and caused huge damages to more than 76,000 employees after a 2020 data breach, a new class action lawsuit alleges. Ramirez, and…
Office of the Privacy Commissioner for Bermuda Issues Data Breach Guide
Odia Kagan of Fox Rothschild writes: The Office of the Privacy Commissioner for Bermuda has issued a helpful guide on the various types of harm that could be caused by a data breach. The office also referred to the Future of Privacy Forum research on potential harms. Read more here, In their guidance, the Bermuda privacy…
T-Mobile, customers diverge on forum to transfer data breach suits
Shannon Stapleton reports: T-Mobile US Inc is supporting a plaintiffs’ bid to centralize in one federal district court almost 30 lawsuits filed by customers over a recent massive data breach, but suggested a different venue due to a “dire” judge shortage. T-Mobile’s filing on Tuesday came in response to the motion filed last month by plaintiffs in one lawsuit…
Exposed Payment Integration API Keys Imperil Millions of Users’ Transaction Details and PII
Arshit Jain and Sai Ahladini Tripathy report some findings concerning the risk of unauthorized access to API keys enabling acquisition of sensitive or critical data. A recent investigation by CloudSEK found that a range of companies have mobile apps with API keys that are hardcoded in the app packages. “These keys could be easily discovered…