Alex Balinger reports: Dr Richard Freeman has admitted losing rider blood data from a third laptop, this time after the UCI requested information about riders from the Giro d’Italia and Tour de France in 2011. Freeman is currently facing a medical tribunal, which is assessing his fitness to practice medicine after allegations he ordered testosterone with the intention of…
Barnes & Noble hit by cyberattack that exposed customer data
Lawrence Abrams reports: U.S. Bookstore giant Barnes & Noble has disclosed that they were victims of a cyberattack that may have exposed customers’ data. […] In an email sent to customers late Wednesday night and seen by BleepingComputer, Barnes & Noble has disclosed that they suffered a cyberattack on October 10th, 2020. As part of…
Online proctor service ProctorTrack disables service after hack
Lawrence Abrams reports: With many schools and colleges performing remote learning, including tests, online proctoring services are increasingly being used to prevent students from cheating. ProctorTrack is one such solution by Verificient that is used by numerous universities, including Rutgers, University of Western Ontario, Ohio University, Illinois State University, Purdue University, and MIT. Starting yesterday, students began receiving…
Twitter Data-Breach Case Won’t Be Resolved Before Year’s End, Ireland’s Regulator Says
Angus Loten reports: European privacy regulators are unlikely to issue a final ruling on Twitter Inc.’s handling of a data breach disclosed in January 2019 before the end of this year, Ireland’s data commissioner said Wednesday. Under the General Data Protection Regulation, the European Union’s 2018 data privacy law, Twitter faces a fine of up to 2% of…
CISA and MS-ISAC Release Joint Guide on Ransomware
Trisha Anderson, Ashden Fein and James Yoon of Covington & Burling write: On September 30, 2020, the Cybersecurity and Infrastructure Security Agency (“CISA”) and the Multi-State Information Sharing and Analysis Center (“MS-ISAC”) released a joint guide synthesizing best practices to prevent and respond to ransomware. This guide was published the day before OFAC and FinCEN released their…
FIN11: Widespread Email Campaigns as Precursor for Ransomware and Data Theft
Genevieve Stark, Andrew Moore, Vincent Cannon, Jacqueline O’Leary, Nalani Fraser, and Kimberly Goody of FireEye write: Mandiant Threat Intelligence recently promoted a threat cluster to a named FIN (or financially motivated) threat group for the first time since 2017. We have detailed FIN11’s various tactics, techniques and procedures in a report that is available now by…