Category: Commentaries and Analyses

For $80 Million, Yahoo! Settles Shareholder Class Action Claiming Stock Price Losses from Data Breaches

Posted on by Dissent

Derek Borchardt and Craig A. Newman write: In the first notable resolution of a data breach-related securities fraud case, a federal court has preliminarily approved Yahoo!’s $80 million settlement based on multiple hacking incidents. As we reported, Yahoo! suffered two cyber-attacks in 2013 and 2014, which compromised the personal information of billions of users. Yahoo!,…

Read more

The 111 Million Record Pemiblanc Credential Stuffing List

Posted on by Dissent

Troy Hunt reports: ……. I’ve just loaded 111 million email addresses found in a credential stuffing list called “Pemiblanc” into HIBP. I had multiple different supporters of HIBP direct me to this collection of data which resided on a web server in France and looked like this:   That site has now been taken down…

Read more

DOJ backtracks on linking OPM hack to loan fraud case

Posted on by Dissent

From the not-surprised dept.: I had suggested previously that claims that data used in identity theft came from the OPM hack were not very convincing. Now the government has walked back any claim that the data did come from the OPM hack. Mark Rockwell reports: The Justice Department said it jumped the gun with a…

Read more

Macy’s and Bloomingdale’s notify customers of attack

Posted on by Dissent

Thanks to Catalin Cimpanu of Bleeping Computer.  Catalin called my attention to a notification from Macy’s about a breach affecting Macys.com and Bloomingdales.com customers. I had actually tweeted about that breach notification last week but I seem to have forgotten to post anything here. What I had tweeted was: I don’t often see this kind…

Read more