David Herman reports: Judge James Gwin has approved a class-action settlement between Sonic Corporation and a number of financial institutions. Sonic has agreed to pay $5.73 million to settle claims that their negligence led to a 2017 data breach, which compromised customers’ payment information. Court documents recount that in 2017, Sonic suffered a data breach…
Category: Business Sector
Brazil arrests suspect linked to the Lapsus$ hacking group
Sergiu Gatlan reports: Today, the Brazilian Federal Police arrested a Brazilian suspect in Feira de Santana, Bahia, believed to be part of the Lapsus$ extortion gang. The suspect was detained following an investigation started in December 2021 after last year’s breach of the Brazilian Ministry of Health. Read more at BleepingComputer. Related: Statement from the Brazilian…
Vinomofo data breach: 500,000 customers at risk after wine dealer hit by cyber-attack
Tory Shepherd reports: Wine dealer Vinomofo is the latest Australian company to be targeted by a cyber-attack. At risk of exposure are the names, dates of birth, addresses, email addresses, phone numbers and genders of customers – Vinomofo has about 500,000 people on its books, but it’s not clear if all were exposed. Vinomofo said…
In Germany, ransomware attack halts circulation of some newspapers; country’s cybersecurity chief fired over possible ties to Russian intelligence
Bill Toulas reports: German newspaper ‘Heilbronn Stimme’ published today’s 28-page issue in e-paper form after a Friday ransomware attack crippled its printing systems. On Saturday, the newspaper issued an “emergency” six-page edition while all planned obituaries were posted on the website. Phone and email communication remained offline during the weekend. Read more at Bleeping Computer….
Verizon notifies prepaid customers their accounts were breached
Sergiu Gatlan reports: Verizon warned an undisclosed number of prepaid customers that attackers gained access to Verizon accounts and used exposed credit card info in SIM swapping attacks. “We determined that between October 6 and October 10, 2022, a third party actor accessed the last four digits of the credit card used to make automatic payments…
Tata Power, a top power producer in India, confirms cyberattack
Jagmeet Singh reports: Tata Power, a leading power generation company in India, has confirmed it was hit by a cyberattack. In a brief statement released on Friday, the Mumbai-based company said that the attack impacted some of its IT systems. “The company has taken steps to retrieve and restore the systems. All critical operational systems…