In recent months, we’ve seen the return of threat actors calling themselves TheDarkOverlord (TDO), although some sources have speculated that arrests announced in May may have damaged the group. As some journalists and others have noted in conversations, certainly this incarnation of TDO does not seem to know of some events or statements they’ve made…
Category: Of Note
Judge Orders Software Exec to Turn Over Laptop After He Leaked Data on Facebook
Kartikay Mehrotra reports: The co-founder of a software company was ordered by a judge to surrender his laptop to a forensic expert after admitting he turned over confidential documents about Facebook Inc. to the U.K. Parliament in violation of a U.S. court order. Sensitive internal Facebook records that were supposed to remain sealed in a…
The US Leans on Private Firms to Expose Foreign Hackers
William G. Rich reports: When the Democratic National Committee realized they had been hacked in April 2016, they turned to experts from a private company: the cybersecurity firm CrowdStrike. Within a day, the company had identified two Russian state-sponsored hacking groups inside the DNC network. Within a few weeks, it publicly explained its analysis in a…
Marriott says data breach compromised info of up to 500 million guests
Erik Ortiz reports: Marriott International said Friday that up to 500 million guests’ information may have been accessed as part of a data breach of its Starwood guest reservation database. The world’s largest hotel chain said it determined on Nov. 19 that an “unauthorized party” had accessed the database as early as 2014. Read more…
After Microsoft complaints, Indian police arrest tech support scammers at 26 call centers
Catalin Cimpanu reports: New Delhi police have arrested 63 suspects in the last two months working and operating 26 call centers that were engaging in tech support scams, posing as tech support staff at Microsoft, Google, Apple, and other major tech companies. The raids on Delhi-based call centers have taken place over the last two…
Amendments to data breach notification law in Colorado impact HIPAA-regulated entities
Kiss that 60-days to notify patients HIPAA bit goodbye if you’re doing business in Colorado. Julie A. Sullivan and Loreli Wright of Greenberg Traurig, LLP write: Passed during the 2018 state legislative session, House Bill 18-1128 went into effect on Sept. 1, changing Colorado’s law on the protection of personally identifying information and the procedure businesses must…