March 26, 2025 – Gatineau, Quebec Privacy Commissioner of Canada Philippe Dufresne has launched a new online tool that will help businesses and federal institutions that experience a privacy breach to assess whether the breach is likely to create a real risk of significant harm to individuals. The privacy breach risk self-assessment tool is a convenient web-based application…
Author: Dissent
T-Mobile prepares $350 million payments for data breach settlement
Diego Pérez Morales reports: The 2021 cyberattack on T-Mobile exposed sensitive information of 76 million customers, including names, addresses, and Social Security numbers. This breach led to a class-action lawsuit, culminating in a $350 million settlement in 2022. This agreement is notable as the second-largest data breach settlement in U.S. history, only surpassed by Equifax’s $700…
The PIPC Sanctions Woori Card for Data Breaches, Imposing KRW 13.45 billion
The Personal Information Protection Commission (PIPC) held its seventh plenary meeting of 2025 and reached a decision to sanction Woori Card Co., Ltd. (Woori Card) for data breaches on March 26, 2025. Administrative sanctions by the PIPC are as follows: A penalty for violations (Gwajingguem) of KRW 13.45 billion; A publication order of sanction results…
United States Unseals Charges Against Aubrey Cottle for Theft of Texas Republican Party Data
AUSTIN, Texas – The Department of Justice announced the unsealing of charges against Canadian national Aubrey Cottle, 37, of Oshawa, Ontario, in connection with the theft of data relating to the Texas Republican Party in 2021. Canadian authorities arrested Cottle on Wednesday and are pursuing charges under Canadian law. A criminal complaint filed in the…
How the FBI Tracked, and Froze, Millions Sent to Criminals in Massive Caesars Casino Hack
Joseph Cox of 404 Media in collaboration with Court Watch writes: The FBI managed to track down and freeze millions of dollars of cryptocurrency Caesars Entertainment sent to a group of hackers that held the casino’s computer systems ransom, according to a 404 Media and Court Watch review of a recently unsealed court document. According…
Oracle Health breach compromises patient data at US hospitals
Oracle Health is becoming this year’s poster child for how NOT to respond to an incident. Lawrence Abrams reports: A breach at Oracle Health impacts multiple US healthcare organizations and hospitals after a threat actor stole patient data from legacy servers. Oracle Health has not yet publicly disclosed the incident, but in private communications sent to…