Today’s reminder of the need to control and regularly audit employee access to personal information comes to us from Erin Maguire in Scotland: A FORMER member of Police Scotland staff is due to stand trial after she denied 44 charges of illegally accessing the personal data of dozens of people over a period spanning four…
Author: Dissent
Free Russia Foundation to investigate data breach after internal documents published online
Novaya Gazeta Europe reports: One of Russia’s most prominent pro-democracy organisations, the Free Russia Foundation, announced that it was investigating a potential cyberattack on Friday, following a leak of thousands of emails and documents related to its work. On Thursday, Telegram channel SOTA reported that “more than 2,500 email chains and more than 13GB of…
FTC Takes Action Against Security Camera Firm Verkada over Charges it Failed to Secure Videos, Other Personal Data and Violated CAN-SPAM Act
August 30, 2024 – The Federal Trade Commission will require security camera firm Verkada to develop and implement a comprehensive information security program to settle allegations the company failed to use appropriate information security practices, which allowed a hacker to access customers’ security cameras. Under a proposed order, which must be approved by a federal…
WazirX confirms 43% of customer funds unrecoverable following $230 million cyberattack, begins restructuring
Ouch. Rachna Dhanrajani reports: India’s cryptocurrency exchange WazirX, on Monday, revealed that 43% of customer funds lost in a recent cyberattack are unlikely to be recovered. In a virtual press conference, the exchange announced it is undergoing a restructuring process, which could take up to six months. They are also in discussions with a potential…
Australian Cancer Research Foundation informs donors of ‘data security incident’
David Hollingworth reports: The Australian Cancer Research Foundation (ACRF) sent an email to its donors late on Friday afternoon, 30 August, warning them of a “data security incident”. According to the email, shared with Cyber Daily by an ACRF donor, a malicious actor was able to access the charity’s network via a compromised email account….
A new variant of Cicada ransomware targets VMware ESXi systems
Pierluigi Paganini reports: Cicada 3301 is a new ransomware-as-a-service (RaaS) operation that appeared in the threat landscape. The group appears to be very active and already listed 23 victims on its extortion portal since mid-June. The following image shows the list of victims published by the gang on its Dark Web leak site. […] The…