At first I thought the headline had a typo and that they meant to name Equifax, but they do, indeed, mean Experian. This suit goes back to an incident previously covered on this site that involved Experian acquiring a company, Court Ventures, that had access to another company’s, InfoSearch’s database…. and a bad actor named…
Category: Of Note
He tried to tell you you’re leaking data. Even after you stupidly blocked him.
Today’s episode of Incident Response Fail involves a cybersecurity professional/bug bounty hunter, Mohamed Suwaiz, and a driver training company in Texas, Smith System, that seemed to stubbornly resist his efforts to alert them to a data leak. Although Suwaiz (@Msuwaiz on Twitter) describes himself as being motivated by bug bounties, when there’s no bounty to…
Here’s what you didn’t know about health data breaches in February
Protenus, Inc. has released its February Breach Barometer, with its analysis of 39 health data incidents compiled for them by this site. As I have done in companion posts to their previous reports, I am providing a list, below, of the incidents upon which their report is based. Where additional details are available, I have…
Citing “irreparable damage,” Panama Papers law firm Mossack Fonseca will close
It doesn’t happen often, but sometimes a breach does sound a death knell for a firm. Cat Rutter Pooley and Barney Thompson report: Mossack Fonseca, the law firm at the centre of the Panama Papers scandal, will close at the end of March, according to a statement from the firm obtained by the International Consortium of Investigative…
Article: Risk and Anxiety: A Theory of Data-Breach Harms
Abstract In lawsuits about data breaches, the issue of harm has confounded courts. Harm is central to whether plaintiffs have standing to sue in federal court and whether their legal claims are viable. Plaintiffs have argued that data breaches create a risk of future injury, such as identity theft, fraud, or damaged reputations, and that…
Hacking group threatens researchers’ lives after they discover attack servers
Chris Bing reports: A hacking group commonly linked to the Iranian government threatened to kill security researchers who came across their cyber espionage operation, according to a new report. Researchers with multinational cybersecurity company Trend Micro were probing a server that appeared connected to a possible data breach in the Middle East when they received a…