Category: Commentaries and Analyses

Indian authorities set to tighten data breach laws in 2022

Posted on by Dissent

Stephen Pritchard reports: Authorities in India are set to clamp down on data breaches and tighten rules for holding sensitive data, according to local media reports. Organizations will be forced to disclose data breaches within 72 hours, bringing India in line with territories such as the EU, which mandates breach disclosures under its General Data Protection Regulation…

Read more

NY State Comptroller DiNapoli Releases School District Audits

Posted on by Dissent

NY State Comtroller DiNapoli released more school district audits last week. As always, DataBreaches.net looked to see what audits concerned IT security. New Rochelle City School District – Information Technology (2021M-142) Issued Date: December 17, 2021 Audit Objective Determine whether New Rochelle City School District (District) officials established adequate controls over network and financial application…

Read more

More than 1,200 phishing toolkits capable of intercepting 2FA detected in the wild

Posted on by Dissent

Catalin Cimpanu reports: A team of academics said it found more than 1,200 phishing toolkits deployed in the wild that are capable of intercepting and allowing cybercriminals to bypass two-factor authentication (2FA) security codes. Also known as MitM (Man-in-the-Middle) phishing toolkits, these tools have become extremely popular in the cybercrime underworld in recent years after major…

Read more

Washington State Data Breaches in 2021 – Analysis

Posted on by Dissent

The Washington State Attorney General report on data breaches reported to their office in 2021 shows a significant increase over previous years.  No surprise there, right? From the Executive Summary: 2021 set a new record for the highest number of data breach notices sent to Washingtonians (6.3 million). This represents approximately an 80% increase on…

Read more