James Coker reports: Cybersecurity awareness training company KnowBe4 has revealed it was duped into hiring a fake IT worker from North Korea, resulting in attempted insider threat activity. The malicious activity was identified and prevented before any illegal access was gained or any data was compromised on KnowBe4 systems. In a blog published on July 23,…
Category: Business Sector
Hacked in 2022, Dell & Dean law firm first notifying affected clients now
From DataBreaches’ “Now what does THIS mean?” file, a notification letter from Dell & Dean PLLC, a law firm in New York. On July 17, Dell & Dean’s external counsel notified the Maine Attorney General’s Office about a breach in September 2022 that affected 6,803 people. A copy of the firm’s notification letter was appended…
West Midlands Police arrest teen allegedly involved with MGM Resorts attack
West Midlands Police in the UK have announced the arrest of a teenager allegedly involved in the attack on MGM Resorts. That attack has been widely attributed to Scattered Spider, although the announcement does not specifically name the group: Officers from our Regional Organised Crime Unit for the West Midlands (ROCUWM) joined officers from the…
Judge Guts SEC Case Against SolarWinds Over Cyber Practices
Cassandre Coyer reports: A US federal judge dismissed much of the Securities and Exchange Commission’s lawsuit against SolarWinds Corp. that alleged the software provider misled investors about its cybersecurity practices and the significance of a major data breach that spilled into the US government. Thursday’s ruling was seen as a blow to the SEC’s aggressive efforts to regulate…
Genetic Testing Firm 23andMe Settles Data Breach Lawsuits
Amanda Bronstad reports: 23andMe has reached a settlement in principle of class actions brought over last year’s data breach, lawyers disclosed at a Tuesday court hearing in San Francisco. The amount and details of the settlement weren’t disclosed, but, in its annual report this year, 23andMe revealed it had $216 million in cash. At a…
Bassett Furniture shuts down manufacturing facilities after ransomware attack
Jonathan Greig reports: One of the largest furniture companies in the U.S. was forced to shut down its manufacturing facilities following a ransomware attack that began last week. Bassett Furniture Industries said it shut down some of its information technology systems after it discovered unauthorized access on July 10. The hacker “disrupted the Company’s business…