Conor Brian Fitzpatrick (aka “Pompompurin” of Breached.vc) isn’t the only person to have their sentence vacated and remanded for re-sentencing this year. Paige Thompson, who was responsible for the massive Capital One hack in 2019, will also be re-sentenced. Eugene Volokh writes: A short excerpt from the 9,000-word U.S. v. Thompson, decided yesterday by Ninth Circuit Judge…
Former University of Michigan Football Quarterbacks Coach and Co-Offensive Coordinator Indicted on Charges of Unauthorized Access to Computers and Aggravated Identity Theft
DETROIT – Former University of Michigan Co-Offensive Coordinator Matthew Weiss—age 42, of Ann Arbor—was charged today in a 24-count indictment alleging 14 counts of unauthorized access to computers and 10 counts of aggravated identity theft, Acting United States Attorney Julie A. Beck announced. Beck was joined in the announcement by Cheyvoryea Gibson, Special Agent in Charge,…
Security Researcher Comments on HIPAA Security Rule
As long-time readers know, DataBreaches has occasionally run into difficulties when trying to helpfully notify entities of their data leaks or breaches. In other cases, independent researchers have also reported frustration with trying to get entities to respond to responsible disclosures. More often than not, initial attempts at disclosure are ignored or go to spam…
Department of Defense civilian employee pleads guilty to taking classified documents
Today’s reminder of the insider threat, from the U.S. Attorney’s Office for the Eastern District of Virginia: ALEXANDRIA, Va. – A civilian electrical engineer for the Department of Defense pled guilty today to unauthorized removal and retention of classified material. According to court documents, Gokhan Gun, 51, of Falls Church, was born in Istanbul, Turkey,…
Data breach at stalkerware SpyX affects close to 2 million, including thousands of Apple users
Zack Whittaker reports: A consumer-grade spyware operation called SpyX was hit by a data breach last year, TechCrunch has learned. The breach reveals that SpyX and two other related mobile apps had records on almost two million people at the time of the breach, including thousands of Apple users. The data breach dates back to…
DOGE to Fired CISA Staff: Email Us Your Personal Data
Brian Krebs reports: A message posted on Monday to the homepage of the U.S. Cybersecurity & Infrastructure Security Agency (CISA) is the latest exhibit in the Trump administration’s continued disregard for basic cybersecurity protections. The message instructed recently-fired CISA employees to get in touch so they can be rehired and then immediately placed on leave, asking employees…