This breach may not turn out to be the biggest insider breach of 2025, but it may well turn out to be one of the most impactful. Jason Leopold reports: A software company that handles sensitive data for nearly every US federal agency was the victim of a cyber breach earlier this year due to…
Category: Of Note
Massachusetts hacker to plead guilty to PowerSchool data breach (1)
Nate Raymond reports: A Massachusetts man has agreed to plead guilty to hacking cloud-based education software provider PowerSchool and stealing data pertaining to millions of students and teachers that hackers used to extort the company and school districts into paying ransoms. Matthew Lane, 19, entered into a plea deal on Tuesday to resolve charges filed…
UK: Post Office to compensate hundreds of data leak victims
Ryan Price reports on The Manchester Evening News: The Post Office has agreed to pay compensation to hundreds of former subpostmasters whose names and addresses were accidentally leaked during a data breach last year. Last June, the personal details of 555 victims of the Horizon IT scandal were published on the Post Office’s website. What…
Australian national known as “DR32” sentenced in U.S. federal court (1)
In a somewhat surpising turn of events, the Australian hacker known as “DR32” learned his sentence in a Colorado federal court this week. It was not the sentence most people might have expected. David Kee Crees, a 26 year-old Australian, who had also been known online as “Abdilo,” “Notavirus,” “Surivaton”, and “Grey Hat Mafia’s Bitch,”…
Japan enacts new Active Cyberdefense Law allowing for offensive cyber operations
Alexander Martin reports: Japan on Friday enacted a new law that would permit the country’s authorities to preemptively engage with adversaries through offensive cyber operations to ensure threats are suppressed before they cause significant damage. The new law, which was first mooted in 2022, is intended to help Japan strengthen its cyber defense “to a level equal…
Breachforums Boss “Pompompurin” to Pay $700k in Healthcare Breach
There’s an update to breach previously reported here in 2023. Brian Krebs reports: In what experts are calling a novel legal outcome, the 22-year-old former administrator of the cybercrime community Breachforums will forfeit nearly $700,000 to settle a civil lawsuit from a health insurance company whose customer data was posted for sale on the forum in…