A proposed Canada-wide Settlement has been reached in a putative class action relating to the StockX data breach that occurred on May 14, 2019, when an unknown third-party was able to gain unauthorized access to certain customer data from StockX’s cloud environment. This proposed Settlement is subject to Court approval. On May 2, 2022, the Superior Court of Quebec authorized…
Category: Non-U.S.
Hackers claim to hit Israeli tourism sites
Tzvi Joffre reports: A hacker group called Sharp Boys claimed that it had obtained data from Israeli tourism sites on Tuesday, including ID numbers, addresses, credit card information and more. Which sites were affected? The affected sites, according to the hackers, are hotels.co.il, isrotel.com, minihotel.co.il, tivago.co.il and danhotels.com. Read more at Jerusalem Post.
Son of Conti: Ransomware tries its hand at politics
Dina Temple-Raston and Sean Powers report: It has been a busy spring for the Russian-speaking ransomware group Conti. After an unprecedented leak of its internal chat logs earlier in the year that had experts predicting the group’s demise, Conti, or at least some subset of it, came back with a vengeance. In April it attacked Costa Rica, hacking…
Politically motivated cyberattacks by different groups hit Iran steel company and Lithuanian networks
It’s easy to lose track of news elsewhere when every day brings new dramatic headlines here n the U.S., but there have been cyberattacks of note in both Iran and Lithuania this week. Both attacks have been attributed to politically motivated groups, although the attributions have not yet been confirmed: a group calling itself “Gonjeshke…
Ransomware Ransom Payments: A Geostrategic Risk
The following is a Google-translated statement addressing the significant and negative impact of ransom payments on the German economy and recommendations to reduce and eliminate the payment of ransoms. In the original German, “Lösegeldzahlungen bei Ransomware-Angriffen: ein geostrategisches Risiko” can be found at https://ransomletter.github.io/: Blackmail Trojans in the form of so-called ransomware have grown into…
Queensland moves on data breach notification scheme
Joseph Brookes reports: The Queensland state government is considering a mandatory data breach notification scheme among several privacy and information sharing reforms in the works. The scheme would force agencies to report data breaches to the regulator and affected individuals in what would be a first for a state or territory government. Currently, Queensland agencies are…