Natasha Lomas reports: Facebook is to be sued in Europe over the major leak of user data that dates back to 2019 but which only came to light recently after information on more than 533 million accounts was found posted for free download on a hacker forum. Today Digital Rights Ireland (DRI) announced it’s commencing a “mass action” to…
Category: Of Note
High-level organizer of notorious hacking group FIN7 sentenced to ten years in prison for scheme that compromised tens of millions of debit and credit cards
Seattle – The first high-level manager of the notorious hacking group FIN7 was sentenced today in U.S. District Court in Seattle to ten years in prison, announced Acting U.S. Attorney Tessa A. Gorman. Fedir Hladyr, 35, a Ukranian national, served as a high-level manager and systems administrator for FIN7. He was arrested in Dresden, Germany,…
Brokerage firm agrees to $3 mln deal for New York cybersecurity rule violations
Sara Merken reports: Brokerage firm National Securities Corp has agreed to pay $3 million in a settlement with New York’s financial services regulator over shortfalls that resulted in four cybersecurity breaches involving unauthorized access to email accounts. Read more on Reuters. NY DFS’s press release: Superintendent of Financial Services Linda A. Lacewell announced today that…
Ca: Data Breach Class Actions: Canadian Courts Taking a Harder Look
Brent J. Arnold and Alexanda Psellas of Gowling WLG write: The recent Ontario decision in Karasik v. Yahoo! Inc.,[1] suggests that while many plaintiffs’ lawyers anticipated a future of massive payouts for data breach class actions in Canada, recent court decisions predict a different course. The beginning of what may be an emerging consensus across provinces and…
NY: Montefiore Medical Center discloses fourth insider-wrongdoing breach in seven months
Montefiore Medical Center in New York is notifying patients of yet another insider-wrongdoing breach. Read their press release below and then the comments after it. April 13, 2021 /PRNewswire/ — Today, Montefiore Medical Center is notifying some patients about a security breach involving information illegally accessed by a former employee. Categories of personal information accessed varied…
Justice Department announces court-authorized effort to disrupt exploitation of Microsoft Exchange Server vulnerabilities
Action copied and removed web shells that provided backdoor access to servers, but additional steps may be required to patch Exchange Server software and expel hackers from victim networks. HOUSTON – Authorities have executed a court-authorized operation to copy and remove malicious web shells from hundreds of vulnerable computers in the United States. They were…