The Federal Trade Commission is taking action against the online alcohol marketplace Drizly and its CEO James Cory Rellas over allegations that the company’s security failures led to a data breach exposing the personal information of about 2.5 million consumers. Drizly and Rellas were alerted to security problems two years prior to the breach yet…
Category: Of Note
UK: ICO fines Interserve £4,400,000 for inadequate data security
Between 18 March 2019 and 1 December 2020 Interserve Limited (“Interserve”) failed to process personal data in a manner that ensured appropriate security of the personal data using appropriate technical and organisational measures as required by Article 5(1)(f) and Article 32 GDPR. This rendered Interserve vulnerable to a cyber-attack which took place in the period…
Australia to propose increased penalties for data breaches following major cyberattacks
Reuters reports: Australia will introduce laws to parliament to increase penalties for companies subject to major data breaches, Attorney-General Mark Dreyfus said, after high-profile cyberattacks hit millions of Australians in recent weeks. […] Dreyfus, in an official statement issued on Saturday, said the government would next week move to “significantly increase penalties for repeated or serious privacy…
Computer hacker of famous musicians’ digital accounts is jailed
The UK’s Crown Prosecution Service issued the following press release today: A computer hacker who stole unreleased music from famous musicians and sold them on the dark web in exchange for cryptocurrency has today been imprisoned. Adrian Kwiatkowski (DOB: 11/10/1999) offered to sell two unreleased songs by British pop star, Ed Sheeran and 12 unreleased…
Cybersecurity Frameworks: What K-12 Leaders Need to Know
The K12 Security Information eXchange (K12 SIX) is pleased to release “Cybersecurity Frameworks: What K-12 Leaders Need to Know,” a new resource for state and local education leaders encouraging the adoption of nationally recognized cybersecurity best practices. This white paper, commissioned by the State Educational Technology Directors Association (SETDA) as part of the work of…
Brazil arrests suspect linked to the Lapsus$ hacking group
Sergiu Gatlan reports: Today, the Brazilian Federal Police arrested a Brazilian suspect in Feira de Santana, Bahia, believed to be part of the Lapsus$ extortion gang. The suspect was detained following an investigation started in December 2021 after last year’s breach of the Brazilian Ministry of Health. Read more at BleepingComputer. Related: Statement from the Brazilian…