Another legal services vendor discloses a breach: Compex Legal Services Inc. (“Compex”) recently discovered an incident that may have impacted the privacy of information related to certain individuals. Compex provides record retrieval and litigation support services to insurance carriers, third party administrators and law firms. As Compex continues to investigate and work toward notifying impacted…
Category: Business Sector
North Korean Hackers Targeted Cybersecurity Firm KnowBe4 with Fake IT Worker
James Coker reports: Cybersecurity awareness training company KnowBe4 has revealed it was duped into hiring a fake IT worker from North Korea, resulting in attempted insider threat activity. The malicious activity was identified and prevented before any illegal access was gained or any data was compromised on KnowBe4 systems. In a blog published on July 23,…
Hacked in 2022, Dell & Dean law firm first notifying affected clients now
From DataBreaches’ “Now what does THIS mean?” file, a notification letter from Dell & Dean PLLC, a law firm in New York. On July 17, Dell & Dean’s external counsel notified the Maine Attorney General’s Office about a breach in September 2022 that affected 6,803 people. A copy of the firm’s notification letter was appended…
West Midlands Police arrest teen allegedly involved with MGM Resorts attack
West Midlands Police in the UK have announced the arrest of a teenager allegedly involved in the attack on MGM Resorts. That attack has been widely attributed to Scattered Spider, although the announcement does not specifically name the group: Officers from our Regional Organised Crime Unit for the West Midlands (ROCUWM) joined officers from the…
Judge Guts SEC Case Against SolarWinds Over Cyber Practices
Cassandre Coyer reports: A US federal judge dismissed much of the Securities and Exchange Commission’s lawsuit against SolarWinds Corp. that alleged the software provider misled investors about its cybersecurity practices and the significance of a major data breach that spilled into the US government. Thursday’s ruling was seen as a blow to the SEC’s aggressive efforts to regulate…
Genetic Testing Firm 23andMe Settles Data Breach Lawsuits
Amanda Bronstad reports: 23andMe has reached a settlement in principle of class actions brought over last year’s data breach, lawyers disclosed at a Tuesday court hearing in San Francisco. The amount and details of the settlement weren’t disclosed, but, in its annual report this year, 23andMe revealed it had $216 million in cash. At a…