Keely Sugden and Evan Kruegel report: The mayor of Lafayette posted a video Tuesday, saying the City has paid a $45,000 ransom after a cyber attack affected city computer and phone systems. “The City was coerced into paying a $45,000 ransom to retrieve a ‘key’ to unlock encrypted data,” officials said. Read more on KDVR.
Category: U.S.
Court Approves Class Action Settlement in RE: YAHOO! Inc.
Zarish Baig of Squire Patton Boggs writes: Yahoo!’s data breach class action is finally being put to rest. Last month, the Northern District of California approved the proposed $117.5M settlement to resolve the claims of approximately 194 million class members in In re Yahoo! Inc. Customer Data Sec. Breach Litig., No. 16-MD-02752-LHK, 2020 U.S. Dist….
Morgan Stanley Hit with Class Lawsuit Over Alleged Data Breaches
Jed Horowitz reports: Former and current Morgan Stanley customers have filed a putative class-action lawsuit alleging negligence and invasion of privacy over the firm’s failure to properly scrub decommissioned hardware of personal information such as social security numbers, account numbers and other personal data. Morgan Stanley earlier this month began notifying brokers and customers that some…
Some Cub Pharmacies in Minnesota report breaches due to looters
Cub Pharmacies is the fourth chain I’ve seen that is reporting some theft of protected health information related to looters during protests in May. But when you read the descriptions of these events — these not just protesters protesting. These people intentionally stole patient data and records. For what political protest purpose? None that I…
Some potential victims of PaperlessPay breach are first finding out about the breach now
At the end of April, this site reported a breach at PaperlessPay that put its clients’ employees at risk of tax refund fraud and identity theft. As reported at the time, PaperlessPay had been contacted by Homeland Security on February 19 to alert them that someone was offering access to their clients’ data for sale…
WV: Elkins Rehabilitation & Care Center notifies residents and employees of breach first discovered in February 2019
I know some people may think I’m being too harsh, but really — almost 1.5 years from detection to notifications to people of a breach? Their response in terms of preventing more incidents seems reasonable, but the gap to figure out that notification was needed and then whom to notify seems too long. What will…