Caleb Skeath writes: On Tuesday, the FTC issued new guidance for businesses on responding to data breaches, along with an accompanying blog post and video. The data breach response guidance follows the issuance of the FTC’s “Start with Security” data security guidance last year and builds upon recent FTC education and outreach initiatives on data security and cybersecurity issues. The FTC’s data…
Category: Of Note
Australia’s biggest data breach sees 1.3m records leaked
Allie Coyne reports: More than one million personal and medical records of Australian citizens donating blood to the Red Cross Blood Service have been exposed online in the country’s biggest and most damaging data breach to date. A 1.74 GB file containing 1.28 million donor records going back to 2010, published to a publicly-facing website,…
Department Releases Intake and Charging Policy for Computer Crime Matters
As computers play an ever-greater role in our lives and cybercrime becomes both more commonplace and more devastating, the need for robust criminal enforcement of effective computer crime laws will only become more important. As we’ve said in public remarks last year, we urgently need targeted updates to the Computer Fraud and Abuse Act that will help the department…
Cybercriminals are using social media to trick customers into handing over their online banking credentials. Danny Palmer
Danny Palmer reports: A phishing campaign is targeting customers of every major UK bank, with cybercriminals posing as customer support staff on Twitter in an attempt to steal users’ online banking credentials. […] In this instance, cybercriminals monitor Twitter for users approaching genuine support accounts for banks, and attempt to hijack the conversation with a…
Yesterday’s major outage was brought to you by hacked IoT devices
Yesterday, like many others throughout the country, I awoke to the unpleasant fact that I couldn’t connect to Twitter or other sites that I might normally check in the morning. Over the course of the day, we learned some facts about what had happened, and read some theories, but the bottom line was that one…
Yevgeniy Nikulin indicted for hacking LinkedIn, Dropbox, and Formspring
From the U.S.A.O. press release: OAKLAND – A federal grand jury in Oakland indicted Yevgeniy Aleksandrovich Nikulin yesterday for obtaining information from computers, causing damage to computers, trafficking in access devices, aggravated identity theft, and conspiracy, announced United States Attorney Brian J. Stretch and Federal Bureau of Investigation Special Agent in Charge John F. Bennett….