Peter Hayes reports: Orrick, Herrington & Sutcliffe LLP will pay $8 million to settle consolidated class action claims over a data breach that impacted approximately 461,100 people. Class counsel asked the US District Court for the Northern District of California to approve the settlement in an unopposed motion filed Thursday. The agreement also calls for an award of…
Category: Business Sector
Why CISA is Warning CISOs About a Breach at Sisense
Brian Krebs reports: The U.S. Cybersecurity and Infrastructure Security Agency (CISA) said today it is investigating a breach at business intelligence company Sisense, whose products are designed to allow companies to view the status of multiple third-party online services in a single dashboard. CISA urged all Sisense customers to reset any credentials and secrets that may have been…
Cyber Safety Review Board Releases Report on Microsoft Online Exchange Incident from Summer 2023
CSRB’s Third Review Focuses on Actions Microsoft, Other Cloud Providers, and the U.S. Government Should Take to Protect Cloud Customers WASHINGTON – Today, the U.S. Department of Homeland Security (DHS) released the Cyber Safety Review Board’s (CSRB) findings and recommendations following its independent review of the Summer 2023 Microsoft Exchange Online intrusion. The review detailed operational and…
Israeli LGBTQ App Atraf Faces Data Leak, 700,000 Users Affected
Everything old is leaked again? First we learn that data of 70+ million AT&T customers that was originally leaked in 2021 has been leaked again. Now it’s the 2021 data leak from Atraf? Waqas of HackRead reports: Atraf, a popular Israeli LGBTQ dating app, has suffered a major data breach exposing personal information of over…
More than two years after a breach, AT&T resets account passcodes after customer records leak online
Zack Whittaker reports: Phone giant AT&T has reset millions of customer account passcodes after a huge cache of data containing AT&T customer records was dumped online earlier this month, TechCrunch has exclusively learned. The U.S. telco giant initiated the passcode mass-reset after TechCrunch informed AT&T on Monday that the leaked data contained encrypted passcodes that could…
Major credit bureau slapped with enforcement notice for data breach in South Africa
Jan Vermeulen reports: The Information Regulator has slapped credit bureau TransUnion with an enforcement notice following a data breach on 18 March 2022. N4ugthySecTU, the group that claimed responsibility for the attack, alleged that they exfiltrated 4TB of data from one of TransUnion’s databases, including the records of 54 million South Africans. However, the bureau said far…