Here is yet another case that reminds us of the insider threat. In this case, the defendants misused Epsilon’s algorithms to predict and sell lists of consumers most likely to respond to fraudster’s schemes’ mailings. Epsilon settled its criminal liability via a deferred prosecution agreement to pay $150 million in penalties and victim compensation and…
Category: Breach Incidents
FCC Reaches Multi-Million Dollar Settlement Of Investigations Into T-Mobile Data Breaches With Significant Improvements To Company’s Cybersecurity
WASHINGTON, September 30, 2024—The Federal Communications Commission today announced a groundbreaking data protection and cybersecurity settlement with T-Mobile to resolve the Enforcement Bureau’s investigations into significant data breaches that impacted millions of U.S. consumers. To settle the investigations, T-Mobile has agreed to important forward-looking commitments to address foundational security flaws, work to improve cyber hygiene,…
Barbados Revenue Authority files listed for sale by threat actors (1)
Records from the Barbados Revenue Authority such as property tax records and vehicle owner’s registration records are being offered for sale, but is the government even aware that personal information has been acquired and is at risk of misuse? According to a post on a well-established Russian-language forum, there are 230GB of uncompressed data that…
A cyberattack on Kuwait Health Ministry impacted hospitals in the country
Pierluigi Paganini reports: Kuwait’s Health Ministry was the victim of a cyberattack that took systems at several of the country’s hospitals offline. The cyber attack also impacted the Ministry of Health website, which is still offline, and Kuwait’s Sahel healthcare app. “Kuwaiti Health Ministry announced on Wednesday that many essential features are back and running…
All Dutch police officers’ contact details stolen in cyberattack
Sam Clark reports: The names of all Dutch police officers have been stolen in a cyberattack, the country’s justice minister said today. David van Weel, minister of justice and security in the Netherlands, said in a letter to the Dutch House of Representatives this afternoon that the chief of police informed him yesterday that “work-related contact details”…
Will victims increasingly turn to courts to suppress publication of stolen data? (1)
What do you do when you have suffered an embarrassing data breach, your attacker(s) are taunting and criticizing you publicly, and some of your data has already been leaked? This month, DataBreaches notes that two victims in different countries are both seeking court injunctions in the hope that they can get stolen data removed from…