Daniel Richardson reports: Bill Evanina, former director of the US National Counterintelligence and Security Center, appeared as a guest on CBS’s 60 Minutes on Sunday, January 31, and gave a stark warning about data being used by China. During the programme, the former director suggested that Beijing is attempting to collect the medical data of Americans….
Category: Hack
Lawmakers press NSA for answers about Juniper hack from 2015
Justin Katz reports: A group of Democratic lawmakers is calling on the National Security Agency to account for its part in the five-year-old breach of Juniper Networks, following a congressional investigation of the company last year. “The American people have a right to know why NSA did not act after the Juniper hack to protect…
Russian hack brings changes, uncertainty to US court system
MaryClaire Dale of AP reports: Trial lawyer Robert Fisher is handling one of America’s most prominent counterintelligence cases, defending an MIT scientist charged with secretly helping China. But how he’ll handle the logistics of the case could feel old school: Under new court rules, he’ll have to print out any highly sensitive documents and hand-deliver…
CA: Serious Prison Time for Hackers Behind Wolf & Associates Breach
Tyler Hayden reports: A pair of habitual offenders behind one of the biggest data breaches in Santa Barbara County history pleaded guilty last week to multiple felony counts that will send them to prison for a combined 33 years. San Diego residents Gordon Welterlen, 37, and Nicole Milan, 31, admitted to hacking a computer network…
Mensa Website Hacked After Britain’s Smartest Folk Failed To Secure Passwords
Barry Collins reports: British Mensa, the society for people with high IQs, failed to properly secure the passwords on its website, prompting a hack on its website that has resulted in the theft of members’ personal data. Eugene Hopkinson, a former director and technology officer at British Mensa, stood down this week, claiming that the…
FR: CNIL Fines a Data Controller and Its Processor 225,000 Euros for Security Violation in Connection with Credential Stuffing
Hunton Andrews Kurth writes: On January 27, 2021, the French Data Protection Authority (the “CNIL”) announced (in French) that it imposed a fine of €150,000 on a data controller, and a fine of €75,000 on its data processor, for failure to implement adequate security measures to protect customers’ personal data against credential stuffing attacks on the website…