Evan Sweeney reports: The country’s largest provider of home respiratory supplies has agreed to pay $875,000 to settle a class-action lawsuit from former employees whose information was exposed during a 2017 data breach. The settlement (PDF) resolves a lawsuit filed last fall that claimed Lincare failed to implement “the most basic security safeguards” to prevent…
Category: Of Note
Hacker Dumps Data Stolen From Government-Linked Cyberespionage Group
Joseph Cox reports: Last week, Motherboard reported that a vigilante hacker had stolen data from a hacking group that researchers say is a government-linked cyberespionage unit. The data included GPS locations, text messages, and phone calls that the group had taken from their own victims. Now, that hacker has seemingly published the stolen data online…
Ex-CIA employee ID’d but not charged in Vault 7 leak of hacking tools
It’s the leak/spy story of the year, I think. But no one has been charged as yet, even though they have a suspect. Dan Goodin reports: Federal authorities have identified a suspect behind last year’s Vault 7 leak of Central Intelligence Agency hacking tools. The trove published to WikiLeaks included exploits and documents for infecting…
Member of TheDarkOverlord arrested — reports
There are reports in the news this morning that a member of TheDarkOverlord has been arrested by Serbian police. These are translations via Google, and I do not see any report yet naming the arrestee or a photo, but… Serbian police arrested SS (1980) from Belgrade suspected of being one of the hackers from the…
Attention PGP Users: New Vulnerabilities Require You To Take Action Now
Danny O’Brien and Gennie Gebhart write: A group of European security researchers have released a warningabout a set of vulnerabilities affecting users of PGP and S/MIME. EFF has been in communication with the research team, and can confirm that these vulnerabilities pose an immediate risk to those using these tools for email communication, including the…
Ph: Privacy commission orders Jollibee to suspend online delivery services over data breach
Ted Cordero reports: The National Privacy Commission (NPC) on Tuesday ordered fast-food giant Jollibee Foods Corp. to suspend its online delivery platform indefinitely due to a data breach reported by the company in December last year. The NPC ordered Jollibee to suspend the operations jollibeedelivery.com and all other data processing open to the public through…