Alyssa Aquino, Judith Selby, and Joanna Storey of Hinshaw write: In enacting the Cybersecurity Affirmative Defense Act, HB80, (Act) on March 11, 2021, Utah became the second state in the U.S. to create affirmative defenses for “persons” to certain causes of action arising out of a breach of system security.[1] “Persons” is defined to include…
FL: Polk County Schools says student information may have been exposed in data breach
WTSP reports: If you have a student who goes to school in Polk County you might have gotten a letter from a company called PCS Revenue Control Systems, Inc. about a data breach. Don’t throw that letter away. The Polk County School District says it’s legitimate and you might need the instructions that come on it…
NZ: Privacy breach: IRD sent details of baby to complete stranger and paid her $240
Tamsyn Parker reports: A woman was shocked to find the details of an unknown baby had been added to her online Inland Revenue account and to receive a $240 back-dated payment for the child. Katie, who doesn’t want her last name used, said she received an email from the IRD last week to say her…
Solairus Aviation Notice Regarding Avianis Data Security Incident
PETALUMA, Calif., March 23, 2021 /PRNewswire/ — Today, Solairus Aviation, a US-based aviation services company whose core business is assisting owners with the safe, reliable, and economical operation of their aircraft, announced that it identified and addressed a data security incident related to one of its third-party vendors. On December 23, 2020, Solairus was notified by a third-party vendor,…
Life Sciences Industry Becomes Latest Arena in Hackers’ Digital Warfare
Kate Goodwin reports: A global pandemic has left life sciences companies with giant targets on their backs for cyberattacks. As of December, at least six pharmaceutical companies in the U.S., U.K. and South Korea working on COVID-19 treatments were targeted by North Korean hackers, according to the Wall Street Journal. The hackers were out for sensitive…
Flagstar Bank loses customers’ social security numbers after Accellion attack
Graham Cluley writes: Things don’t get much worse than having to admit to your employees that a gang of cybercriminals have broken into your infrastructure, stolen the private details (social security numbers, names and home addresses) of your staff, and are demanding that your company pays a ransom before further sensitive data is leaked. Well,…