NYS Attorney General Letitia James announced a settlement: New York Attorney General Letitia James secured $200,000 from the law firm, Heidell, Pittoni, Murphy & Bach LLP (HPMB) for failing to protect New Yorkers’ personal and healthcare data. HPMB’s poor data security measures made it vulnerable to a 2021 data breach that compromised the private information of approximately…
Category: Subcontractor
AU: Crown Resorts acknowledges getting ransom demand over GoAnywhere breach
Reuters reports: Australia’s biggest casino operator Crown Resorts said on Monday it was investigating a data breach at its third-party file transfer service, GoAnywhere, in which hackers obtained a limited number of Crown’s files. “We were recently contacted by a ransomware group who claimed they have illegally obtained a limited number of Crown files,” a…
What’s happening with the Latitude Financial cyber attack? Millions of customer details stolen in one of the largest-known data breaches in Australia
Part of ABC’s write-up today: What do we know about who has been hit by the cyber attack? The consumer finance company announced on Monday: 7.9 million Australian and New Zealand drivers licence numbers have been stolen about 53,000 passport numbers were stolen less than 100 customers had a monthly financial statement stolen An additional 6.1 million…
Fortra told breached companies their data was safe
Zack Whittaker and Carly Page report: Software maker Fortra told its corporate customers that their data was safe — even when it wasn’t — following a ransomware attack on its systems, TechCrunch has learned. … TechCrunch has heard from two victim organizations that only learned that data had been exfiltrated from their GoAnywhere systems after…
Rio Tinto data vendor GoAnywhere’s possible breach spotted in Jan-end
CNA reports: U.S. cybersecurity firm Fortra said suspicious activity was identified within its GoAnywhere software nearly two months ago, a day after Rio Tinto in a staff memo said personal data of some of its Australian employees may have been stolen. The internal memo seen by Reuters on Thursday revealed payroll information, like payslips and…
Pension Protection Fund confirms employee data exposed in GoAnywhere breach
Ross Kelly reports: The Pension Protection Fund (PPF) has confirmed that data belonging to current and former employees has been exposed in the wake of the GoAnywhere breach. In a statement to IT Pro, the fund, which manages pension assets for nearly 300,000 clients, said it has informed affected staff and is providing support and…