Approval Notice Quebec Superior Court File No. 500-06-001015-193 CALGARY, AB, Sept. 8, 2022 /CNW/ – Detailed information and updates are available on the Settlement Website at the following address: www.stockxsettlement.ca. A Canada-wide Settlement has been reached in a class action relating to the StockX Data Breach that occurred on May 14, 2019, when an unknown third-party was able to gain unauthorized access…
Category: Commentaries and Analyses
3rd Circuit vacates dismissal of data breach suit
Biuckley LLP writes: On September 2, the U.S. Court of Appeals for the Third Circuit vacated the dismissal of a class action alleging that a defendant pharmaceutical research company’s negligence led to a data breach. According to the opinion, the plaintiff, who is a former employee of the defendant’s subsidiary, provided her sensitive personal and financial…
RESOURCE: Storing Passwords in your Browser Can Ruin Your Life (But Will Make Criminals VERY Happy!)
[The following was originally posted at PogoWasRight.org] As the world reels from daily cyber attacks, it’s more important than ever to understand how our online behavior can negatively impact our family and work. From storing usernames and passwords in the browser to using the same device for work, personal financial matters, and playing online games,…
CSA Alert (AA22-249A) #StopRansomware: Vice Society
Note: This joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail various ransomware variants and ransomware threat actors. These #StopRansomware advisories include recently and historically observed tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) to help organizations protect against ransomware. Visit stopransomware.gov to…
URLs Are NOT Passwords, and Sadly, That Needed to Be Said (Stolowitz vs. Nuance Communications)
In 2014, Nuance Communications discovered that anyone could access protected health information on one of its platforms. After the situation persisted for years, a former employee decided to submit a whistleblower complaint to HHS. For his efforts, he spent more than one year fending off threatened federal hacking charges, even though no hacking was involved….
EvilProxy Phishing-As-A-Service With MFA Bypass Emerged In Dark Web
Seen on Resecurity’s blog: a reminder that our current defenses fall rapidly as nimble criminals find a work-around and that some developments enable second-tier or less sophisticated attackers to punch above their weight: Following the recent Twilio hack leading to the leakage of 2FA (OTP) codes, cybercriminals continue to upgrade their attack arsenal to orchestrate…