Martin Matishak reports: A House Republican late last week introduced legislation to untangle the country’s jumble of cybersecurity regulations, keeping the bipartisan proposal alive as Congress finishes its work for 2024. The measure from Rep. Clay Higgins of Louisiana, a member of both the House Homeland Security and Oversight committees, is a companion bill to bipartisan…
Category: U.S.
N.J. school accidentally released names of kids who opted out of sex education
Tina Kelley reports: A Cherry Hill resident has asked the U.S. Department of Education to investigate the Cherry Hill School District for releasing the names of dozens of students whose families opted them out of sex education classes. The breach came after an education advocacy group filed public records requests in every district in the state,…
Attorney General James Secures $250,000 from Movie Theater Operator for Failing to Protect Employees’ Personal Information
NEW YORK – New York Attorney General Letitia James today secured $250,000 from a global movie theater operator, National Amusements, Inc. (National Amusements), that operates movie theaters in the Bronx and on Long Island for failing to protect their former and current employees and contractors’ personal information. An investigation by the Office of the Attorney General…
Patients at center of data breach case win $65M settlement against Lehigh Valley Health Network
Nicole Leonard reports: A Pennsylvania judge has cleared the way for a $65 million settlement with Lehigh Valley Health Network in a data breach case that involved stolen medical records and nude photos of cancer patients, taken during exams, posted on the dark web by a Russian cybergang. At a hearing Friday in Lackawanna County Court, Senior…
Leaked info of 122 million linked to B2B data aggregator breach
Bill Toulas reports: The business contact information for 122 million people circulating since February 2024 is now confirmed to have been stolen from a B2B demand generation platform. The data comes from DemandScience (formerly Pure Incubation), a B2B demand generation company that aggregates data. […] In the case of DemandScience, the firm collected business data from…
Amazon confirms employee data breach after vendor hack
Sergiu Gatlan reports: Amazon confirmed a data breach involving employee information after data allegedly stolen during the May 2023 MOVEit attacks was leaked on a hacking forum. The threat actor behind this data leak, known as Nam3L3ss, published over 2.8 million lines of Amazon employee data, including names, contact information, building locations, email addresses, and more….