Maria Daisy reports: Prosecutors in Albania arrested four people on Friday for stealing the personal data of more than 630,000 people which then ended up in the public domain, including salary figures and car registrations. Two of the arrested men were IT technicians working at the state tax office and two others, who had bought…
Category: Of Note
Why Canadian cyber insurance companies are requiring businesses to use multi-factor authentication
Alyssa DiSabatino reports: Canadian cyber insurance companies are now requiring businesses to offer multi-factor authentication (MFA) and have cybercrime/data breach response plans in place before qualifying for coverage. Prudent, since cybercrimes and ransomware attacks are on the rise – Canadians have lost $4.9 billion to ransomware attacks in the last year. Read more at Canadian…
FinalSite ransomware attack shuts down thousands of school websites
Lawrence Abrams reports: FinalSite, a leading school website services provider, has suffered a ransomware attack disrupting access to websites for thousands of schools worldwide. FinalSite is a software as a service (SaaS) provider that offers website design, hosting, and content management solutions for K-12 school districts and universities. FinalSite claims to provide solutions for over 8,000 schools and…
FTC Finalizes Order with Mortgage Analytics Firm, Requiring it to Strengthen Security Safeguards, Increase Oversight of Vendors
In December, 2020, the FTC announced a proposed settlement with Texas-based Ascension Data & Analytics after a security breach involving one of its vendors resulted in the exposure of, and unauthorized access to, consumers’ mortgage applications. One year later, the settlement received final approval, as the FTC announced on December 22: The Federal Trade Commission…
Administrative fine imposed on psychotherapy centre Vastaamo for data protection violations
A hack and extortion attempt involving the psychotherapy center in Vastaamo, Finland was — and remains — one of the worst breaches ever covered on PogoWasRight.org and DataBreaches.net because it involved the sensitive mental health information of tens of thousands of patients and a coverup by an executive of the clinic. Now EDPB has posted…
Russian national named in $82M hacking scheme denied bail
AP reports: A Russian millionaire who U.S. authorities allege participated in a scheme to steal information on computer networks and use it for insider trading, illegally bringing in tens of millions of dollars, was denied bail Wednesday. Vladislav Klyushin, 41, who works for an information technology company with ties to the upper levels of the…