Joseph J. Lazzarotti, Jason C. Gavejian, and Maya Atrakchi of JacksonLewis write: In mid-March, Utah Governor Spencer Cox signed into law the Cybersecurity Affirmative Defense Act (HB80) (“the Act”), an amendment to Utah’s data breach notification law, creating several affirmative defenses for persons (defined below) facing a cause of action arising out of a breach…
Category: Commentaries and Analyses
What Really Caused Facebook’s 500M-User Data Leak?
Lily Hay Newman reports: Since Saturday, a massive trove of Facebook data has circulated publicly, splashing information from roughly 533 million Facebook users across the internet. The data includes things like profile names, Facebook ID numbers, email addresses, and phone numbers. It’s all the kind of information that may already have been leaked or scraped from some…
North Korean Hackers Threatened Bithumb Exchange With a $16M Ransom Amid the 2017 Data Breach, Says Report
Felipe Erazo reports: A new report commissioned by the U.S. secret services unveiled what happened behind the attack launched by North Korean hackers against a South Korean crypto exchange. The case is about a breach on June 29, 2017, which exposed data tied to over 30,000 customers stemming from Bithumb. Hackers Threatened to ‘Destroy’ Data…
Cyber Criminals Hone Attacks Against Schools
Kathleen E. Dion of Robinson & Cole writes: The FBI recently issued a Flash alert warning higher education institutions, k-12 schools, and seminaries about increasing numbers of ransomware attacks affecting the education industry. According to the warning, “[s]ince March 2020, the FBI has become aware of PYSA ransomware attacks against U.S. and foreign government entities,…
Vulnerability: Est. Millions of Users of Popular Educational Platform Exposed to Account Takeover Threats And More
A lot of universities have been attacked recently. Not all attacks are related to the Moodle vulnerability described in this report (e.g., all the Accellion-related university breaches), but the Moodle vulnerability worth noting and addressing if it applies to your uni. Chase Williams reports: At the beginning of October 2020, the Wizcase cyber research team, led by…
They, too, also issued breach notices…
Each week, I post some articles on this site about breaches involving protected health information or medical information, but there are usually other reports that just get entered on my worksheets for analysis for Protenus. To give you a taste of how many more incidents we record but not necessarily post in a week, I…