Daryna Antoniuk reports: German police said they have shut down the servers and arrested one of the administrators of the country’s largest German-speaking online marketplace for illegal goods and services, including stolen data, drugs and forged documents. Police said the operation on Monday seized expensive vehicles and around €1 million worth of digital assets from…
Express Services disclosed a data breach. One month later, they learned they had a second data security problem.
Express Employment Professionals (“Express Pros“) describes itself as a leading staffing agency in the U.S., “specializing in matching job seekers with the best jobs for their skills and experience.” Express Pros is the flagship brand for Express Services and conducts business across the U.S., Canada, South Africa, Australia, and New Zealand. Express Pros operates as…
U.S. officials urge Americans to use encrypted apps amid unprecedented cyberattack
Kevin Collier reports: Amid an unprecedented cyberattack on telecommunications companies such as AT&T and Verizon, U.S. officials have recommended that Americans use encrypted messaging apps to ensure their communications stay hidden from foreign hackers. The hacking campaign, nicknamed Salt Typhoon by Microsoft, is one of the largest intelligence compromises in U.S. history, and it has…
Trump FBI Pick Kash Patel’s Emails Accessed By Iranian Hackers: Report
David Gilmour reports: President-elect Donald Trump’s FBI director pick, Kash Patel, was informed by the agency he’ll soon lead that he’d been targeted by Iranian hackers, sources familiar with the situation revealed to CNN. Hackers reportedly accessed some of Patel’s communications, according to one source. Patel, a former chief of staff to the defense secretary during Trump’s first term, has…
Unprecedented increase in liability for personal data leaks in the Russian Federation to take effect in May 2025
Advant Beiten writes: A law increasing administrative liability for personal data leaks was signed on 30 November 2024 (No. 420-FZ) (the “Law“). The Law will enter into force on 30 May 2025. A new article of the Criminal Code of the Russian Federation also enters into force on 11 December 2024. It establishes liability for the illegal use and/or transfer,…
Failure to terminate access can be costly. Very costly.
Earlier today, DataBreaches posted an HHS OCR announcement of a settlement with a HIPAA covered entity. A former contractor had accessed its electronic medical record system on three occasions without authorization to retrieve PHI for use in potential fraudulent Medicare claims. OCR imposed a monetary penalty of $1.19 million for the entity’s failure to: conduct…