Commentaries and Analyses – Page 7

South Korea: Modetour Network fined 740 million won for hacking incident; Meta loses appeal of 6.7 billion won fine

Posted on March 13, 2025 by Dissent

There are two cases in South Korean news this week of note here today involving enforcement actions by South Korea’s Personal Information Protection Commission. One involves a travel agency, Modutour. The other involves a court decision about Meta’s data sharing. Modutour Network Fined by PIPC Yun Ye-won reports that Modutour Network, which neglected safety measures…

#StopRansomware: Medusa Ransomware

Posted on March 13, 2025March 12, 2025 by Dissent

Release Date: March 12, 2025 Alert Code: AA25-071A Summary Note: This joint Cybersecurity Advisory is part of an ongoing #StopRansomware effort to publish advisories for network defenders detailing various ransomware variants and ransomware threat actors. These #StopRansomware advisories include recently and historically observed tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) to help organizations protect…

Akira ransomware gang used an unsecured webcam to bypass EDR

Posted on March 9, 2025 by Dissent

The Akira ransomware gang exploited an unsecured webcam to bypass EDR and launch encryption attacks on a victim’s network. Pierluigi Paganini reports: Cybersecurity researchers at S-RM team discovered a novel attack technique used by the Akira ransomware gang. The ransomware group used an unsecured webcam to encrypt systems within a target’s network, bypassing Endpoint Detection…

A Brief Reminder About the Florida Information Protection Act

Posted on March 6, 2025March 6, 2025 by Dissent

Joseph Lazzarotti of JacksonLewis writes: According to one survey, Florida is fourth on the list of states with the most reported data breaches. No doubt, data breaches continue to be a significant risk for all business, large and small, across the U.S., including the Sunshine State. Perhaps more troubling is that class action litigation is more…

HCRG Care’s lawyers claimed an injunction issued in a “private” hearing required us to remove two posts. We didn’t comply.

Posted on March 5, 2025March 14, 2025 by Dissent

Occasionally, entities in other countries try to take legal action against DataBreaches.net to chill or censor this site’s reporting on their breaches. None of them have prevailed, in part due to the protections we have here under the First Amendment, and in part to the pro bono legal defense afforded to this site. This is…

Info accessed in Rainbow board data breach ‘deleted and has not been shared’

Posted on March 3, 2025March 3, 2025 by Dissent

Sudbury.com reports: Data acquired by unauthorized individuals during Rainbow District School Board’s recent cyber incident “was deleted and has not been shared,” according to an update on the situation from the school board. The school board also said in the Feb. 28 statement that three weeks after the cyber incident, which meant internet was unavailable…