Alfred Ng reports: Multiple government agencies are relying on a security measure that can be easily bypassed thanks to massive breaches like the Equifax hack, the US Government Accountability Office has found. In a report released Friday, the government watchdog group found that the US Postal Service, the Department of Veterans Affairs, the Social Security…
Category: Of Note
Authorities Arrest Three Suspected Admins of France’s Biggest Darkweb Market
Seen on d/darknetlive: On June 12, French law enforcement arrested the three suspected administrators of the French DeepWeb Market, the largest darkweb market in France. The administrators are facing charges in connection with the drug trafficking that took place on the site and several related crimes. Three people were detained on June 12 as part…
Jury awards patient $300k after hospital employee improperly accessed and shared her records
This is the kind of insider breach that makes patients lose confidence in hospitals. I am not surprised that the jury came down hard on the hospital. Of the $300,000 award, $295,000 is punitive damages against the hospital for not doing anything against the doctor when they were made aware of the problem. A Coffee…
Auto Dealer Software Provider Settles FTC Data Security Allegations
The following is a press release issued by the Federal Trade Commission (FTC) that relates to a data security incident — a misconfiguration — discovered by MacKeeper researchers in 2016 that was previously noted on this site, including a subsequent settlement between DealerBuilt and the New Jersey Attorney General’s Office. From the wording of the…
SEC Issues Alert On Outsourcing and Data Security
Liisa Thomas, Sarah Aberg, Kari Rollins, and Katherine Boy Skipsey write: The SEC recently issued a risk alert warning about using vendors and cloud-based platforms. Many broker dealers and investment advisors are turning to these third parties to store customer data. In its alert, the SEC’s Office of Compliance Inspections and Examinations warns firms that…
Two hacking groups responsible for huge spike in hacked Magento 2.x stores
Catalin Cimpanu reports: Two hacker groups are responsible for a huge spike in the number of hacked Magento 2.x shopping sites, according to Willem de Groot, founder of Sanguine Security. This is now the third month in a row when the number of hacked Magento 2.x sites has doubled, after it previously doubled from March…