Jonathan Greig reported: Telecommunications giant AT&T denied any connection to a database of stolen information that included the Social Security numbers of 23 million Americans. First reported by Brian Krebs, Milwaukee cybersecurity company Hold Security said it found a 3.6 GB file on a dark web platform that contained Social Security numbers and information belonging to…
Category: Business Sector
USAA Must Face Lawsuit Over Driver’s License Disclosures
Samantha Hawkins reports: United Services Automobile Association must face claims that it disclosed individuals’ driver’s license numbers to cybercriminals, after a federal judge in Manhattan refused to dismiss the suit. Vincent Doland and Christine Mapes sued the insurance company under the Driver’s Privacy Protection Act and New York State General Business Law, claiming that cybercriminals used…
Judge Investigates Alex Jones’ Legal Team After Sandy Hook Medical Records Are Leaked
Mary Papenfuss reports: The judge in a Sandy Hook defamation lawsuit against far-right conspiracy podcaster Alex Jones has launched an investigation of his legal team after the medical records of school parents were leaked. Medical and psychiatric records of some parents and relatives of the children killed in the 2012 mass shooting at Sandy Hook Elementary in…
Lockbit, Hive, and BlackCat attack automotive supplier in triple ransomware attack
Linda Smith, Rajat Wason, and Syed Zaidi of Sophos write: In May 2022, an automotive supplier was hit with three separate ransomware attacks. All three threat actors abused the same misconfiguration – a firewall rule exposing Remote Desktop Protocol (RDP) on a management server – but used different ransomware strains and tactics. The first ransomware…
$8 Million Multistate Settlement Resolves 2019 Waa Data Breach Investigation
Kirk Nahra and Amy Gopinathan of Wilmer Hale write: State Attorneys General settle with Wawa, Inc. for 2019 data breach that compromised approximately 34 million payment cards used by consumers. On July 26, 2022, Acting New Jersey Attorney General Matthew J. Platkin announced that New Jersey is co-leading an $8 million multistate settlement with Wawa, Inc. (Wawa)…
Malware attacks reported by three Japanese entities
Two of the following incidents occurred in June; the first one is recent: WDB Holdings Co. Ltd confirms ransomware attack WDB Group (WDB Holdings) issued the following statement on August 2: Since August 1, 2022, we have been experiencing an issue that prevents us from accessing the mail system and file servers of our group’s…