Stéphane Pitre, Anne Merminod, Alexandra Hebert, Alexis Leray of BLG Law Firm write: On March 26, 2021, the Superior Court rendered a landmark judgment dealing with the loss of personal information, Lamoureux c. OCRCVM, 2021 QCCS 1093. Madam Justice Florence Lucas, J.C.S. dismisses the class action filed by the plaintiff, Danny Lamoureux in its entirety in…
Category: Commentaries and Analyses
Update: BioTel Heart notifies patients of vendor leak. Did vendor fail to notify them?
A cardiac monitoring firm is now notifying patients after a Google search on their name in January led them to an August, 2020 report on this site about a vendor’s leak. But why didn’t they know about it already from the vendor last year or from the notifications this site had sent them last year?…
Booking.com hit with €475K penalty for failing to report a breach within 72 hours
Politico reports: Hotel booking site Booking.com got hit with a €475,000 fine for being late to report a data breach, the company’s lead EU privacy regulator announced Wednesday. The fine, imposed by the Dutch data protection authority because the company is legally established in Amsterdam, came after criminals stole the personal data of more than…
Ransomware: A Perfect Storm
Ransomware: A Perfect Storm James Sullivan and James Muir Emerging Insights, 29 March 2021 This Emerging Insights paper calls for a new set of policy interventions to reduce the threat from ransomware. Options range from introducing legislation to prevent ransom payments, to tackling the use of penetration testing tools used in ransomware attacks, to national-level mechanisms…
Whistleblower: Ubiquiti Breach “Catastrophic”
Brian Krebs reports: On Jan. 11, Ubiquiti Inc. [NYSE:UI] — a major vendor of cloud-enabled Internet of Things (IoT) devices such as routers, network video recorders and security cameras — disclosed that a breach involving a third-party cloud provider had exposed customer account credentials. Now a source who participated in the response to that breach alleges Ubiquiti…
UPDATE: Seller of alleged MobiKwik data deletes all the data and says “Adios!”
The following post by the original poster/seller appeared on the forum where the MobiKwik data — or what was purported to be MobiKwik data — was offered for sale: Major Update: =========== So, we have received probably 100-150 mails/messages last 24 hours regarding this leak. People praising us for hacking???, people wanting to learn hacking,…