Barbara Li and Bohua Yao report: On November 30, 2018 the Cyber Security Protection Bureau, under the auspices of the PRC Ministry of Public Security (the “MPS”), issued a draft Guideline for Internet Personal Information Security Protection (the “Guideline”) along with a request for public comments. Even though, upon reaching final form and taking effect, the…
Category: Of Note
Govt served Twitter with a FISA order to deploy NIT against us – TheDarkOverlord
TheDarkOverlord is back on Twitter with a new account, and their first tweets give a hint as to why their @tdo_hackers account had been suspended. In two tweets posted overnight to @tdo_hack3rs, TDO writes: Perhaps Twitter is most concerned with suspending us when we’ve not made any clear violations because 1/2 — thedarkoverlord (@tdo_hack3rs) December…
Channel Ship Services hacked by TheDarkOverlord; has maritime security been compromised?
When TheDarkOverlord hacked Channel Ship Services, they not only acquired personal data that could be misused for fraud, but they claim they also acquired information that can jeopardize maritime security. According to Jersey-based Channel Ship Services’ website, CSS Limited provides highly qualified permanent and contract specialist personnel to the global offshore industry. Those personnel have recently…
Cyber-espionage group uses Chrome extension to infect victims
Catalin Cimpanu reports: In what appears to be a first on the cyber-espionage scene, a nation-state-backed hacking group has used a Google Chrome extension to infect victims and steal passwords and cookies from their browsers. This is the first time an APT (Advanced Persistent Threat –an industry term for nation-state hacking groups) has been seen…
SD Calif. Dismisses Data Security Breach Class Action Against Mortgage Company
Christopher P. Hahn. writes: The U.S. District Court for the Southern District of California recently dismissed a consumer’s putative class action lawsuit against a mortgage lending and servicing company for purported damages sustained as a result of a security breach wherein his personal information was compromised, and the hackers attempted to open credit cards in…
Florida contractor physicians’ group settles HHS claims after they failed to have a BA agreement in place with a vendor who had a breach
There is a follow-up to a 2014 breach reported on this site at the time. But it turns out there was an interesting twist to this case that HHS followed up. Here is their press release: Advanced Care Hospitalists PL (ACH) has agreed to pay $500,000 to the Office for Civil Rights (OCR) of the…