Troy Hunt, owner of HaveIBeenPwned.com, writes: You know when you’re really jet lagged and really tired and the cogs in your head are just moving that little bit too slow? That’s me right now, and the penny has just dropped that a Mailchimp phish has grabbed my credentials, logged into my account and exported the…
Category: Business Sector
Malaysia’s Anwar says ‘no way’ to US$10 million ransom demand to end airport cyberattack
Joseph Sipalan reports: Malaysia’s Prime Minister Anwar Ibrahim said on Tuesday that hackers demanded a US$10 million ransom for a cyberattack that paralysed some operations at Kuala Lumpur International Airport (KLIA) over the weekend, raising concerns about the airport’s cybersecurity and potential risks to travellers’ safety. Anwar confirmed that Malaysia Airports Holdings Berhad (MAHB), which operates the…
Data breach at stalkerware SpyX affects close to 2 million, including thousands of Apple users
Zack Whittaker reports: A consumer-grade spyware operation called SpyX was hit by a data breach last year, TechCrunch has learned. The breach reveals that SpyX and two other related mobile apps had records on almost two million people at the time of the breach, including thousands of Apple users. The data breach dates back to…
South Korea: Modetour Network fined 740 million won for hacking incident; Meta loses appeal of 6.7 billion won fine
There are two cases in South Korean news this week of note here today involving enforcement actions by South Korea’s Personal Information Protection Commission. One involves a travel agency, Modutour. The other involves a court decision about Meta’s data sharing. Modutour Network Fined by PIPC Yun Ye-won reports that Modutour Network, which neglected safety measures…
Attorney General James Sues National General and Allstate Insurance for Failing to Protect New Yorkers’ Personal Information
NEW YORK – New York Attorney General Letitia James today filed a lawsuit against several insurance companies doing business as National General and Allstate Insurance Company (Allstate) for failing to protect New Yorkers’ personal information from cyberattacks. In 2020 and 2021, National General suffered a pair of back-to-back data breaches that exposed the driver’s license numbers of…
Texas Man Convicted of Sabotaging his Employer’s Computer Systems and Deleting Data
There’s an update to an indictment announced by the DOJ in April 2021. In today’s reminder of the insider threat, DOJ announced: A federal jury in Cleveland convicted a Texas man today for writing and deploying malicious code on his former employer’s network. According to court documents and evidence presented at trial, Davis Lu, 55,…