Mark Young and Aleksander Aleksiev of Covington and Burling write: Yesterday, the European Commission, Council and Parliament announced that they had reached an agreement on the text of the Cyber Resilience Act (“CRA”). As a result, the CRA now looks set to finish its journey through the EU legislative process early next year. As we explained in our…
Category: Of Note
60 credit unions facing outages due to ransomware attack on popular tech provider
Jonathan Greig reports: About 60 credit unions are dealing with outages due to a ransomware attack on a widely-used technology provider. National Credit Union Administration (NCUA) spokesperson Joseph Adamoli said the ransomware attack targeted the cloud services provider Ongoing Operations, a company owned by credit union technology firm Trellance. Read more at The Record.
Proliance Surgeons notifying 437,392 patients after ransomware attack earlier this year
On November 17, Proliance Surgeons notified HHS that 437,392 patients were affected by a breach. An undated notice on their website explains that it was a ransomware attack in which files and systems were encrypted and some data was exfiltrated. “After a thorough forensic investigation, we discovered on May 24, 2023, that additional files may…
After $50 Million Breach, KyberSwap Faces Hacker’s Shocking Demands
Alex Dovbnya reports: The individual claiming responsibility for the hack on KyberSwap, a multi-chain decentralized exchange (DEX) aggregator, has issued a set of astonishing demands through a transaction on the Ethereum blockchain. The hacker, self-identified as “Kyber Director,” is demanding complete executive control over Kyber, the company, and full authority over its governance mechanism, KyberDAO….
DFS Announces $1 Million Cybersecurity Settlement With First American Title Insurance Company
Press Release of November 28: The New York State Department of Financial Services (DFS) today announced that First American Title Insurance Company (First American) will pay a $1 million penalty to New York State for violations of DFS’s Cybersecurity Regulation (23 NYCRR Part 500) stemming from a large-scale cybersecurity breach in May 2019. The breach…
Hacker breaks silence following a decade behind bars in Cybernews documentary
DataBreaches first reported on Jesse William McGraw of Arlington, Texas, a/k/a “GhostExodus,” was when he was arrested by the FBI in June 2009 and then indicted in July 2009 on federal felony charges related to hacking into Carrell Clinic in Dallas, Texas. McGraw, who worked as a contract security guard at North Central Medical Plaza,…