Catalin Cimpanu reports: A former Yahoo engineer was sentenced to five years of probation and home confinement for hacking into the personal accounts of more than 6,000 Yahoo Mail users to search for sexually explicit images and videos. Reyes Daniel Ruiz, 34, of Tracy, California, will only be allowed to leave his home for work,…
Category: Business Sector
Data breach at Canadian insurance firm exposes personal information
Jessica Haworth reports: A security breach at a Canadian insurance firm may have exposed the personal data of clients, the company warns. Heartland Farm Mutual, which provides insurance for agricultural businesses across Canada, says a “small number” of personal records may have been accessed by an unknown party during the incident. Read more on The Daily…
Possible Click2Gov Security Breach Under Investigation
Here we go again? See recent developments here and past coverage linked from here.
Credit unions can serve up negligence claim in Sonic data breach case – judge
Sara Merken reports: An Ohio federal judge ruled on Sonic Corp’s bid to dismiss claims brought by financial institutions over a 2017 data breach in which hackers accessed customers’ payment card data from 325 of its drive-in locations, allowing a negligence claim to proceed while nixing claims of negligence per se and for declaratory and…
Hakbit ransomware campaign targeting specific European countries
Derek Kortepeter reports: Proofpoint researchers have published findings on a campaign involving the Hakbit ransomware. As their blog post states, the ransomware is being spread via spear-phishing emails targeted at individuals in “mid-level positions across the pharmaceutical, legal, financial, business service, retail, and healthcare sector.” The attacks, described as low-volume, are specifically targeting employees of organizations located in…
Turkey: KVKK fines gaming company TRY 1,100,000 for breach notification violations
OneTrust DataGuidance reports: The Personal Data Protection Authority (‘KVKK’) published, on 23 June 2020, its decision (‘the Decision’) of 16 April 2020, fining a gaming company a total of TRY 1,100,000 (approx. €142,980) for data breach notification violations. In particular, the Decision concerns a data breach suffered by the gaming company in which hackers were…