The gap from the disclosure of a data breach to the filing of a potential class-action lawsuit is often a matter of weeks (or less), although a lot of lawsuits are dismissed for lack of Article III standing (see a 2021 review of data breach litigation here). In March, in-home respiratory care provider SuperCare…
Category: Hack
‘JekyllBot:5’ Vulnerabilities Allow Remote Hacking of Hospital Robots
Eduard Kovacs reports: Cybersecurity researchers specializing in healthcare IoT systems have discovered five serious vulnerabilities that can be exploited to remotely hack Aethon’s TUG autonomous mobile robots. The TUG robots are used by hundreds of hospitals in North America, Europe and Asia to transport goods, materials and clinical supplies. Their role is to give staff…
Russian hackers tried to sabotage Ukrainian power grid – officials, researchers
Reuters reports: Russian hackers attempted to launch a destructive cyberattack on Ukraine’s electricity grid last week, Ukrainian officials and cybersecurity researchers said on Tuesday. The group, dubbed “Sandworm” by security researchers and previously tied to destructive cyberattacks attributed to Russia, deployed destructive and data-wiping malware on computers controlling high voltage substations in Ukraine, the Computer…
T-Mobile Tried To Pay Hackers To Buy Leaked Customer Data Back
Abhishek Mishra reports on one of the revelations in court filings related to the arrest of the owner of RaidForums and the takedown of the forum: T-Mobile, one of the largest phone carriers in the U.S., tried to pay the hackers to get back its customer data leaked in a previous breach. The move backfired…
Update: No sensitive data taken during District 518 cybersecurity breach
On March 8, Kari Lucin at The Globe reported that District 518 in Minnesota had confirmed a data breach involving an employee’s email account, but didn’t anticipate a big problem. Yesterday, Lucin followed up with the district’s confirmation that no personal information or data had been taken or used in the February incident. An investigation…
Montgomery County and Florida Women Convicted of Hacking One’s Former Employer and Attempting to Extort Them
PHILADELPHIA – United States Attorney Jennifer Arbittier Williams announced that Frances Marie Eddings, 68, of Orlando, FL, and Jude Denis, 54, of Wyncote, PA, were convicted after trial in the Allentown Federal Courthouse of accessing a computer system without authorization for pecuniary gain from a non-profit charity organization. In September 2019, the defendants were charged…