Sergiu Gatlan reports: Many LastPass users report that their master passwords have been compromised after receiving email warnings that someone tried to use them to log into their accounts from unknown locations. The email notifications also mention that the login attempts have been blocked because they were made from unfamiliar locations worldwide. If you are…
Category: Business Sector
Another T-Mobile cyberattack reportedly exposed customer info and SIMs
Mitchell Clark reports: T-Mobile has suffered another cyberattack after being rocked by a massive data breach in August. This time around, attackers accessed “a small number of” customers’ accounts, according to documents posted by The T-Mo Report. According to the report, customers either fell victim to a SIM swapping attack (which could allow someone to bypass SMS-powered two-factor authentication), had…
Shutterfly services disrupted by Conti ransomware attack
Lawrence Abrams reports: Photography and personalized photo giant Shutterfly has suffered a Conti ransomware attack that allegedly encrypted thousands of devices and stole corporate data. Although many associate Shutterfly with their website, the company’s photography-related services are aimed at consumer, enterprise, and education customers through various brands such as GrooveBook, BorrowLenses, Shutterfly.com, Snapfish, and Lifetouch. Read…
Phishing victim can’t claim $5 million loss for money it never ‘held’
File this one under how-well-do-you-really-understand-your-cyberinsurance-policy. Barbara Grzincic reports: A commercial-crime insurance policy didn’t cover RealPage for a $5 million phishing loss because the property-management service provider never “held” any of the purloined money, a federal appeals court held. The 5th U.S. Circuit Court of Appeals affirmed a win for AIG’s National Union Fire Insurance Company…
Ninth Circuit overturns $1.7 million restitution order for Russian hacker
Maria Dinzeo reports: Russian hacker Yevgeniy Nikulin is off the hook for $1.7 million in restitution a federal judge ordered him to pay four tech companies whose user databases he breached in 2012. The Ninth Circuit overturned the award Wednesday, finding insufficient support for the amount of resources the companies claim to have spent trying to repair…
Pain and Suffering for a Data Breach? German Court Issues First Decision of Its Kind in Europe.
Odia Kagan of Fox Rothschild writes: A German Court has ordered pain and suffering damages as a result of a data breach, the first decision of its kind in Europe. According to the judgment, Scalable Capital has to pay the plaintiff, represented by consumer organization EuGD Europäische Gesellschaft für Datenschutz mbH, € 2,500 in damages…