Catalin Cimpanu reports: The threat intel team at Recorded Future, a US-based cyber-security firm, claims to have identified the hacker who assembled and then sold a massive collection of email addresses and passwords known as Collection #1. The company’s experts believe a hacker going online by the pseudonym of “C0rpz” is the person who rigorously…
Category: Of Note
Fallout Over Hack by N. Koreans Hits Philippines Bank
Christine Stuart reports: Bangladesh’s central bank brought a federal complaint against one of the largest banks in the Philippines on Thursday to recover $80 million that it says was stolen from North Korean hackers. At the time it was stolen from Bangladesh Bank, says lawyer John Sullivan of Yehudah Gordon, the money was being held…
UK: Leave.EU and Eldon Insurance fined over data law breach
Oliver Wright reports: The Brexit campaign group Leave.EU and an insurance company run by its founder Arron Banks are facing fines of £120,000 for data protection breaches. The Information Commissioner’s Office (ICO) is to fine Leave.EU £15,000 for unlawfully using Eldon Insurance customers’ details to send 300,000 political marketing messages, and a further £45,000 for…
Hacker Who Stole $5 Million By SIM Swapping Gets 10 Years in Prison
Lorenzo Franceschi-Bicchierai reports: A college student who stole more than $5 million in cryptocurrency by hijacking the phone numbers of around 40 victims pleaded guilty and accepted a plea deal of 10 years in prison, Motherboard has learned. Joel Ortiz accepted the plea deal last week, Erin West, the Deputy District Attorney in Santa Clara…
Vale é hackeada e documentos mostram como empresa lida com acidentes (Vale is hacked; documents show how company handles accidents)
The following is a Google translation of a news report by Felipe Payao: The Brazilian multinational mining company Vale was invaded and supposedly confidential internal documents were withdrawn and leaked by invaders. Hackers would have taken advantage of an open software toolbox for team collaboration to retrieve minutes and extract security incidents and incidents around the…
Dutch DPA Publishes 2018 Report on Data Breach Statistics
On January 29, 2019, the Dutch Data Protection Authority (Autoriteit Persoonsgegevens, the “Dutch DPA”) published a report (in Dutch) on the personal data breach notifications received in 2018 (the “Report”). The EU General Data Protection Regulation (the “GDPR”) requires data controllers to notify a personal data breach to the competent Data Protection Authority (“DPA”) within…