Steve Karnowski and Michelle Chapman of AP report: A Minnesota judge has endorsed a settlement in which Target Corp. will pay $10 million to settle a class-action lawsuit over a massive data breach in 2013. U.S. District Judge Paul Magnuson said at a hearing Thursday in St. Paul, Minnesota, that he would grant preliminary approval…
Category: Of Note
Feds warned Premera about security flaws before breach
Mike Baker reports: Three weeks before hackers infiltrated Premera Blue Cross, federal auditors warned the company that its network-security procedures were inadequate. Officials gave 10 recommendations for Premera to fix problems, saying some of the vulnerabilities could be exploited by hackers and expose sensitive information. Premera received the audit findings April 18 last year, according…
Senators blast Anthem for ‘unacceptable’ response after data breach
Sarah Ferris reports: Leaders of the Senate’s health committee are accusing insurer giant Anthem of failing to inform millions of people who may have been affected by a massive data breach last month. Committee chairman Lamar Alexander (R-Tenn.) and ranking member Patty Murray (D-Wash.) said Wednesday that 50 million customers who may have been impacted…
WA: Premera Blue Cross target of cyber-attack, personal information accessed (update 3)
The Edmonds Beacon reports: Premera Blue Cross announced on Tuesday, March 17 that it was the target of a cyber-attack, and customers personal information was accessed. According to the Premera website, attackers gained access to the IT systems. The attack initially occurred on May 5, 2014, but wasn’t discovered until Jan. 29, 2015. An investigation by…
“University of Racism” hacked; will others go after U. of Oklahoma student records?
“Because none of them seem to give a shit…” – a hacker commenting on the lack of response to notifying the U. of Oklahoma that he had hacked them. This blogger has repeatedly lamented the generally inadequate data security in the education sector and the fact that no federal agency actually enforces data security at the post-secondary…
Talos Discovery Spotlight: Hundreds of Thousands of Google Apps Domains’ Private WHOIS Information Disclosed
Nick Biasini, Alex Chiu, Jaeson Schultz, and Craig Williams write: In mid-2013, a problem occurred that slowly began unmasking the hidden registration information for owners’ domains that had opted into WHOIS privacy protection. These domains all appear to be registered via Google App [1], using eNom as a registrar. At the time of writing this…