Lawrence Abrams reports: A data breach broker is selling databases containing user records for 14 different companies he claimed were breached by hackers in 2020. When a company is breached, threat actors will typically download accessible databases, including account records. These databases are then sold directly to other threat actors, or the hackers utilize data…
Category: Of Note
Turkey: KVKK fines gaming company TRY 1,100,000 for breach notification violations
OneTrust DataGuidance reports: The Personal Data Protection Authority (‘KVKK’) published, on 23 June 2020, its decision (‘the Decision’) of 16 April 2020, fining a gaming company a total of TRY 1,100,000 (approx. €142,980) for data breach notification violations. In particular, the Decision concerns a data breach suffered by the gaming company in which hackers were…
The Case Against EU Cyber Sanctions for the Bundestag Hack
Stefan Soesanto writes: The German Ministry of Foreign Affairs informed Moscow on May 28 that the German federal prosecutor had issued a sealed arrest warrant for Russian military intelligence officer Dmitriy Sergeyevich Badin over the 2015 Bundestag hack. Among other items, the hack resulted in the exfiltration of 16 GB of sensitive emails and documents and necessitated…
Brazilian federal police investigates presidential data leak
Angelica Mari reports on what sounds like a massive hack of government agencies and more in Brazil: The Brazilian federal police reported advances around an investigation into a cybercrime organization supposedly responsible for exposing personal details of senior government officials including president Jair Bolsonaro. The investigation follows a leak earlier this month, claimed by hacker…
Data breach exposes information, activities of Maine Information and Analysis Center
Erin Keller reports: The Maine Information and Analysis Center (MIAC), a unit of the Maine State Police, has suffered a significant data breach. MaineBeacon.com reports that the documents from MIAC have been leaked online. They include personal information about subjects of police investigations across the state of Maine and reveal details of the center’s operational practices,…
Russian National Pleads Guilty for Role in Transnational Cybercrime Organization Responsible for more than $568 Million in Losses
One of the leaders of the Infraud Organization pleaded guilty today to RICO conspiracy. Infraud was an Internet-based cybercriminal enterprise engaged in the large-scale acquisition, sale, and dissemination of stolen identities, compromised debit and credit cards, personally identifiable information, financial and banking information, computer malware, and other contraband. Assistant Attorney General Brian A. Benczkowski of…