Matthew Renda reports: A federal judge denied approval of a settlement in the Yahoo data breach class action on Monday, saying Yahoo’s refusal to disclose the total amount to be paid out to those affected by the largest data breach in history renders it insufficient. “The proposed notice does not disclose the costs of credit…
Category: Of Note
Data of 14,200 Singapore patients with HIV leaked online by American fraudster who was deported from here
Chang AI-Lien reports: Confidential information of 14,200 people with HIV, including their names, contact details and medical information, has been stolen and leaked online, and the culprit is an American fraudster, the Ministry of Health revealed on Monday (Jan 28). Mikhy Farrera-Brochez, the man behind the leak, lived in Singapore from 2008 onward before being…
Japanese government plans to hack into citizens’ IoT devices
Catalin Cimpanu reports: The Japanese government approveda law amendment on Friday that will allow government workers to hack into people’s Internet of Things devices as part of an unprecedented survey of insecure IoT devices. The survey will be carried out by employees of the National Institute of Information and Communications Technology (NICT) under the supervision…
Millions of bank loan and mortgage documents have leaked online (UPDATED)
Update: One day later, the story of the OpticsML breach got much worse when Bob Diachenko found a second exposure involving the vendor. Read about it here. Original post: Zack Whittaker reports on a leak discovered by Bob Diachenko of Security Discovery: A trove of more than 24 million financial and banking documents, representing tens…
Darknet vendor attempts to sell 100,000 hacked KYC documents from major cryptocurrency exchanges
Oliver Knight reports: A darknet vendor is attempting to sell 100,000 know-your-customer (KYC) documents supposedly stolen from major exchanges including Binance, Bitfinex, Bittrex, and Poloniex. The vendor, who posts on the darknet forum ‘Dread’ under the ‘ExploitDot’ moniker, claims to have obtained details from a security breach of a third-party KYC solution provider. Among the…
Facebook may face record-setting fine for privacy breach
The Washington Post reports: U.S. regulators have met to discuss imposing a record-setting fine against Facebook for violating a legally binding agreement with the government to protect the privacy of its users’ personal data, according to three people familiar with the deliberations but not authorized to speak on the record. The fine under consideration at…