Category: Of Note

New VPNFilter malware targets at least 500K networking devices worldwide

Posted on by Dissent

Cisco’s Talos writes: For several months, Talos has been working with public- and private-sector threat intelligence partners and law enforcement in researching an advanced, likely state-sponsored or state-affiliated actor’s widespread use of a sophisticated modular malware system we call “VPNFilter.” We have not completed our research, but recent events have convinced us that the correct…

Read more

UK: The University of Greenwich fined £120,000 by Information Commissioner for “serious” security breach

Posted on by Dissent

The University of Greenwich has been fined £120,000 by the Information Commissioner following a “serious” security breach involving the personal data of nearly 20,000 people – among them students and staff. It is the first university to have been fined by the Commissioner under the existing data protection legislation (Data Protection Act 1998). The investigation…

Read more

Actor Advertises Japanese PII on Chinese Underground

Posted on by Dissent

Kelly Sheridan reports: A dataset containing more than 200 million lines of Japanese personally identifiable information (PII) has been found on the Chinese underground market, researchers report. It’s believed the data is authentic and was exfiltrated from multiple Japanese website databases. Experts at FireEye iSIGHT Intelligence first noticed the actor advertising the dataset in December…

Read more

South Carolina Enacts First Insurance Data Security Act

Posted on by Dissent

Edward J. McAndrew of Ballard Spahr LLP writes: South Carolina has become the first state to enact a version of the Insurance Data Security Model Law, which was drafted by the National Association of Insurance Commissioners (NAIC) in 2017. Governor Henry McMaster signed the South Carolina Insurance Data Security Act into law on May 14, 2018. The Act…

Read more