The following press release was issued August 30 by Sweden’s Authority for Privacy Protection (IMY): Trygg-Hansa’s security flaws have meant that information on 650,000 customers has been accessible via the internet. The Privacy Protection Agency (IMY) is now issuing an administrative sanction fee of SEK 35 million against the company. After receiving a tip, IMY began…
Category: Business Sector
Personal Data Protection Commissioner of Singapore announces two decisions
The Personal Data Protection Commissioner of Singapore (PDPC) announced two decisions this week: A financial penalty of $3,000 was imposed on Autobahn Rent A Car for failing to put in place reasonable security arrangements to protect the personal data in its possession or under its control. Directions were also issued to strengthen access control measures…
BlackCat ransomware hits Azure Storage with Sphynx encryptor
Sergiu Gatlan reports: The BlackCat (ALPHV) ransomware gang now uses stolen Microsoft accounts and the recently spotted Sphynx encryptor to encrypt targets’ Azure cloud storage. While investigating a recent breach, Sophos X-Ops incident responders discovered that the attackers used a new Sphynx variant with added support for using custom credentials. Read more at BleepingComputer.
FTX restores claims portal after security breach incident
Haseeb Shaheen reports: In a recent turn of events, the claims portal for the globally renowned cryptocurrency exchange FTX has resumed its full-fledged operation. The operations were suspended following a security incident that took place with Kroll, the third-party agent responsible for handling the creditor claims amidst the ongoing FTX bankruptcy. The cybersecurity incident is just…
Iranian state-backed hackers target global satellite, defense, and pharma companies
The Shillong Times reports: Microsoft analysts have revealed that Iranian state-backed hackers have been actively targeting satellite, defense, and pharmaceutical companies worldwide. Their primary objective appears to be gathering intelligence and potentially bolstering domestic production in these industries, particularly in the face of heavy US sanctions. As per IANS, these hackers have successfully infiltrated multiple…
Caesars Entertainment confirms ransom payment, customer data theft
Sergiu Gatlan reports: Caesars Entertainment, self-described as the largest U.S. casino chain with the most extensive loyalty program in the industry, says it paid a ransom to avoid the online leak of customer data stolen in a recent cyberattack. Caesars discovered on September 7th that the attackers stole its loyalty program database, which stores driver’s…