Emma Woollacott reports: British businesses could face lower fines if they proactively report data breaches, thanks to an agreement between the UK’s data protection regulator and cybersecurity agency. The Information Commissioner’s Office (ICO) and National Cyber Security Centre (NCSC) say they plan to encourage engagement with the NCSC in the event of a breach, and allow meaningful…
Author: Dissent
MO: Cyberattack causes multiple court systems to shut down some public safety computer servers
Kelsey Landis reports: A cyberattack caused St. Louis County to shut down some computer systems used to look up court cases, issue charges and process people in custody at the jail, County Executive Sam Page said Tuesday. Police officers, jail officials, the county counselor, municipal court officials and the prosecuting attorney’s office all use the…
Conti member indicted for role in 2021 Scripps Health ransomware attack
On September 7, the U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC), in coordination with the United Kingdom, sanctioned 11 individuals who are alleged to be part of the Russia-based Trickbot cybercrime group. At the same time, the U.S. Department of Justice (DOJ) unsealed indictments against nine individuals in connection with the…
Texas Medical Liability Trust updates its data breach notification; now provides notification on behalf of almost 60,000 individuals
In March, Texas Medical Liability Trust on behalf of itself and its affiliates, Texas Medical Insurance Company, Physicians Insurance Company, and Lone Star Alliance, Inc., a Risk Retention Group (collectively “TMLT”) filed a breach notification with the Maine Attorney General’s Office. That submission indicated that 625 individuals had been affected by a breach that occurred…
Facebook Messenger phishing wave targets 100K business accounts per week
Bill Toulas reports: Hackers use a massive network of fake and compromised Facebook accounts to send out millions of Messenger phishing messages to target Facebook business accounts with password-stealing malware. The attackers trick the targets into downloading a RAR/ZIP archive containing a downloader for an evasive Python-based stealer that grabs cookies and passwords stored in…
U.K. ICO prosecution: Rachel Anderton
From the U.K.’s Information Commissioner’s Office: A former family intervention officer at St Helens Borough Council has been sentenced for unlawfully accessing social services records. Rachel Anderton was prosecuted for viewing records on the council’s case management system between 17 January 2019 and 17 October 2019 without having a business need to do so. An…