Joseph J. Lazzarotti and Phillip A. Baggett of JacksonLewis write: On June 20, 2025, Texas Governor Greg Abbott signed SB 2610 into law, joining a growing number of states that aim to incentivize sound cybersecurity practices through legislative safe harbors. Modeled on laws in states like Ohio and Utah, the new Texas statute provides that certain businesses…
Category: Breach Incidents
MNGI Digestive Health settles class action lawsuit stemming from BlackCat attack
MNGI Digestive Health, a multi-location gastroenterology practice in Minnesota, received preliminary court approval on May 7 to settle a class action lawsuit stemming from an August 2023 cyberattack. The incident was first reported on DataBreaches on September 25, 2023, but had been discovered by MNGI on August 25, 2023, after the BlackCat (AlphV) ransomware gang…
A militarily degraded Iran may turn to asymmetrical warfare – raising risk of proxy and cyber attacks
The following article by Nakissa Jahanbani of Penn State was originally published at The Conversation. Iran’s ability to launch surface-to-surface missiles has been degraded by Israeli action. Morteza Nikoubazl/NurPhoto via Getty Images Nakissa Jahanbani, Penn State Israel’s air assault on Iran has focused largely on degrading the Islamic Republic’s military and would-be nuclear capabilities. In…
McLaren provides written notice to 743,131 patients after ransomware attack in July 2024 (2)
On August 5, 2024, McLaren Healthcare became aware of suspicious activity affecting McLaren Health Care and Karmanos Cancer Institute computer systems. In an early statement about the incident, McLaren indicated that the attack affected IT systems across its 13 hospitals, cancer treatment centers, surgery centers, and clinics. In an August 12 update, McLaren reported that…
Montana Attorney General launches investigation into Lee Enterprises data breach
Seaborn Larson reports that the Montana Attorney General’s Office is investigating the Lee Enterprises ransomware attack by Qilin: Montana Attorney General Austin Knudsen announced Friday his office has launched an investigation into Lee Enterprises following a cyber attack on company systems earlier this year that compromised the personal data of nearly 40,000 employees and subscribers….
No, the 16 billion credentials leak is not a new data breach — a wake-up call about fake news (Updated)
Kudos to Lawrence Abrams and Bleeping Computer for calling out Cybernews’ misleading reporting. News broke today of a “mother of all breaches,” sparking wide media coverage filled with warnings and fear-mongering. However, it appears to be a compilation of previously leaked credentials stolen by infostealers, exposed in data breaches, and via credential stuffing attacks. To be…