The Office of Inadequate Security
The following enforcement action was related to FTC action, also announced today, but is a separate settlement with states. The following press release is from Connecticut’s Attorney General: (Hartford, CT) – Attorney General Tong announced today that a coalition of 50 attorneys general, co-led by Connecticut, has reached a settlement with Marriott International, Inc. as…
Kristina Beek reports: Former Uber CISO Joseph Sullivan, convicted in 2023 of trying to cover up a data breach, is seeking a new trial, citing procedures omissions from his original trial that his lawyers said tainted the verdict. Sullivan was initially convicted on charges related to Uber’s 2016 data breach and was sentenced to three years of…
It reportedly was not a ransomware attack, but MoneyGram has now confirmed it did lose sensitive customer data in the recent cyberattack against its business. Sead Fadilpašić reports: In a data breach notification letter sent to affected customers and published on the company’s website, hackers were able to access MoneyGram’s networks for two days, between…
School districts in Illinois, Louisiana, and Texas have all recently reported data security incidents. One involved insider wrongdoing, while the other two appear to be external incidents. In Illinois, Sydney Sinks reports: A recent data breach in Bethalto Community Unit School District #8 targeted Superintendent Dr. Jill Griffin, according to the school district. On Oct….
Lawrence Abrams reports: Payment platform MoneyGram says there is no evidence that ransomware is behind a recent cyberattack that led to a five-day outage in September. MoneyGram is an American payment and money transfer platform that allows people to send and receive money through an extensive network of 350,000 physical locations in 200 countries or via…
WASHINGTON – The Justice Department announced today the unsealing of a warrant authorizing the seizure of 41 internet domains used by Russian intelligence agents and their proxies to commit computer fraud and abuse in the United States. As an example of the Department’s commitment to public-private operational collaboration to disrupt such adversaries’ malicious cyber activities,…