DFS Investigation Found Wide-Ranging and Long-Standing Failures in Coinbase, Inc.’s Anti-Money Laundering Program, Including with Regard to its Know Your Customer/Customer Due Diligence, Transaction Monitoring, and Suspicious Activity Reporting Systems, Among Others Settlement Requires Coinbase to Pay $50 Million Penalty and to Invest an Additional $50 Million in its Compliance Program From the NYS Department…
Category: Breach Incidents
Email Reveals AR-15 Pistol Brace Company Hit With Data Breach Ahead Of ATF Ruling
Tyler Duden reports: SB Tactical, one of the most popular AR-15 pistol brace manufacturers, appears to have been hit with a data breach, where customer data, including names, addresses, and credit card information, was leaked online. A snapshot of an email from SB Tactical’s customer support has surfaced on Reddit and Twitter in the last few days…
Oregon workers’ compensation claimants and policyholders may have had their personal information hacked
Mike Rogoway reports that Oregon’s worker’s compensation insurer, SAIF Corp., experienced a breach in October that potentially compromised policyholders’ information and workers’ compensation claimants’ personal and medical information. On their breach-related site maintained for them by IDX, SAIF explains that on October 24, there was a brief period during which an unauthorized individual or individuals…
Consulate Health Care chain hit by Hive
Hive ransomware gang has added another healthcare-related victim to its leak site. This time, the victim is Consulate Health Care (CHC), a chain of service providers with a troubled financial history. Enter Hive, Stage Left Hive’s listing for CHC indicates that they locked CHC’s files on December 3. Hive has already leaked some of what…
Bits ‘n Pieces (Trozos y Piezas)
MX: BlackCat claims attack on Grupo Estrategas EMM ALPHV, aka BlackCat, claims to have attacked Grupo Estrategas EMM, but the ransomware group has not as yet uploaded any proof of claims. Nor has the insurance firm posted any notice on its website or social media indicating any incident. The insurer has not responded to an…
University of Miami Health breach notice
Remember when Britton White and DataBreaches discussed employees having their work credentials compromised by infostealers and how employers might want to require employees to notify them whenever an employee’s device was compromised if the device had stored login credentials? University of Miami Health posted a breach notice this week that caught my eye. From the…