Sara Merken reports: A Minnesota federal judge has granted a bid by subsidiaries of education company Pearson to dismiss a lawsuit brought over a data breach that resulted in the unauthorized access of personal information from 13,000 school and university accounts. Chief U.S. District Judge John Tunheim in Minneapolis on Monday found that a legal…
Category: Of Note
Citizen of Kazakhstan known as “fxmsp” charged with computer fraud, wire fraud, and conspiracy for hacking hundreds of corporate networks in more than 40 countries worldwide
Wow. There will be a lot of media coverage about this one, but let’s start with the DOJ’s press announcement and indictment: Prolific hacker sold network access to other cybercriminals on various underground forums, enabling various further cyberattacks Seattle – An indictment was unsealed today in the Western District of Washington charging a citizen of…
Vast Phishing Campaign Hits Microsoft Users in 62 Countries
Bloomberg reports: Microsoft Corp. customers were targeted in a massive phishing campaign that has sought to defraud users in 62 countries since December. Recently, the malicious emails have evolved to capitalize on the pandemic, according to Microsoft. The attack “targeted business leaders across a variety of industries, attempting to compromise accounts, steal information and re-direct…
Soldier accused of leaking troop details to Satanic neo-Nazis pleads not guilty
Tim Darnell reports: Former Army private Ethan Melzer has pleaded not guilty to a six-count indictment stemming from an alleged plot to kill fellow US troops in the name of a satanic neo-Nazi group. Last month, Melzer, 22, of Louisville, Kentucky, was indicted for allegedly planning an attack on his U.S. Army unit by sending sensitive…
Why should the health plan offer credit monitoring in this case? (UPDATED)
I was reading yet another press release about an incident involving protected health information. This one was from Independence Blue Cross in Philadelphia. Let me start by quoting the relevant part and then I’ll meet you on the other side: On May 8, 2020, the Independence Blue Cross Privacy Office was notified that certain member information…
Italian Garante Fines Bank 600,000 Euros for Pre-GDPR Data Breach
Hunton Andrews Kurth writes: The Italian Data Protection Authority (Garante per la protezione dei dati personali, “Garante”) recently announced that it levied a €600,000 fine on banking institution UniCredit for several violations of the Italian Personal Data Protection Code, in its pre-General Data Protection Regulation (“GDPR”) form. The sanction was imposed following a data breach that took…