Christopher Brown reports: Insight Global LLC will pay up to $5,000 each to victims of an April 2021 data breach involving Covid-19 contact-tracing data to compensate them for extraordinary out-of-pocket losses, in a settlement given final approval by a federal judge. Lisa Chapman filed the proposed class action against Insight and the Pennsylvania Department of…
Category: Commentaries and Analyses
OCR Labs denies breach report details, patches vulnerability
Chris Burt reports: A vulnerability allegedly exposing sensitive credentials of Australian financial institutions has been closed by OCR Labs, after being discovered and disclosed by Cybernews researchers. The biometric liveness detection API used by OCR Labs is among the exposed data, according to the report. OCR Labs takes issue with details in the report, however, telling Biometric Update that the…
Proposed UN Cybercrime Treaty Negotiations Headed in Troubling Direction, Sidestepping Human Rights Protections and Threatening Free Expression, EFF and Allies Warn
A press release from EFF: San Francisco—On Thursday, April 13, at 10:00 am Pacific Time (1:00 pm Eastern Time, 7 pm CEST), experts with Electronic Frontier Foundation (EFF) and four international allies will brief reporters on the grave threat to human rights posed by ongoing UN Cybercrime Treaty negotiations that could lead to broad surveillance…
Cyberwarfare is all in the mind, says Britain
The Economist reports: It is the deterrent rocket force of our age,” gushed one columnist. “Cyber divisions are worth more than aircraft carrier[s] or nuclear weapons.” He was referring to Britain’s National Cyber Force (ncf), created in 2020 with a mission to “disrupt, deny, degrade” in cyberspace. Now the ncf is opening up to dispel such fantasies. On…
HIPAA Data Breach Costs Company Nearly $300,000 In DOJ False Claims Act Settlement
Stacy L. Cook and Iqra Mushtaq of Barnes & Thornburg LLP write: On March 14, 2023, the U.S. Department of Justice (DOJ) announced the settlement of a case involving alleged violations of the False Claims Act (FCA) as a result of cybersecurity failures and breach of HIPAA-protected health information. Obtained under the Civil Cyber-Fraud Initiative, this settlement emphasizes…
UnitedLex hit by d0nut ransomware team, 200 GB of corporate files leaked (update4)
The d0nut ransomware team seems to be ramping up their activity and leaks. Last week, they contacted DataBreaches about Montgomery General Hospital in West Virginia. Today, they reached out to this site about UnitedLex, a firm that describes itself as helping legal teams modernize “with a consultative framework that brings together legal subject matter expertise,…