It appears that Texas-based outdoor WiFi provider TengoInternet was notified anonymously in April 2018 of a hack, but their investigation at that time reportedly revealed no credible evidence. In September, however, when they were reportedly contacted again by the same anonymous individual, they had credible evidence. Was the anonymous party a whitehat researcher trying to…
Category: Business Sector
Privacy Commissioner Expresses Serious Concern on Cathay Pacific Airways Data Breach Incident
The Privacy Commissioner for Personal Data, Hong Kong (Privacy Commissioner), Mr Stephen Kai-yi WONG, expressed serious concern over the Cathay Pacific Airways data breach incident, noting that the incident might involve a vast amount of personal data (such as name, date of birth, passport number, Hong Kong Identity Card number, credit card number, etc) of…
Two hackers behind 2016 Uber data breach have been indicted for another hack
Zack Whittaker reports: Two hackers who stole millions of users’ data from ride-hailing firm Uber have been indicted on separate hacking charges related to a data breach at online learning portal Lynda, two people familiar with the case have told TechCrunch. Vasile Mereacre, a Canadian citizen living in Toronto, and Brandon Glover, a Florida resident,…
ICO issues maximum £500,000 fine to Facebook for failing to protect users’ personal information
The Information Commissioner’s Office (ICO) has fined Facebook £500,000 for serious breaches of data protection law. In July, the ICO issued a Notice of Intent to fine Facebook as part of a wide ranging investigation into the use of data analytics for political purposes. After considering representations from the company, the ICO has issued the…
Security company sued after alleged information leak
Oops. I missed this one when WTOC first reported it on October 17th: Dozens of social security numbers connected to work hours and rates of pay are at risk of being used by criminals because of the actions of a security firm supervisor. Those are the allegations in a lawsuit filed by a Savannah law…
TRITON Attribution: Russian Government-Owned Lab Most Likely Built Custom Intrusion Tools for TRITON Attackers
FireEye writes: In a previous blog post we detailed the TRITON intrusion that impacted industrial control systems (ICS) at a critical infrastructure facility. We now track this activity set as TEMP.Veles. In this blog post we provide additional information linking TEMP.Veles and their activity surrounding the TRITON intrusion to a Russian government-owned research institute. FireEye…