January 12, 2024 New York State Department of Financial Services (DFS) Superintendent Adrienne A. Harris today announced that Genesis Global Trading, Inc. (“Genesis Global Trading”) will pay an $8 million penalty to New York State for compliance failures that violated DFS’s virtual currency and cybersecurity regulations and left the company vulnerable to illicit activity and…
Family Healthcare notifying patients of November 2022 breach at Brady Martz & Associates
On September 8, Brady Martz & Associates in North Dakota disclosed a data breach in November 2022 that reportedly affected more than 53,000 individuals. Less than two weeks later, at least four lawsuits had been filed against the firm. Now, four months later, we see a notice from one of their clients: Family HealthCare was…
Pharma Giant Alkem Laboratories Faces Security Breach, Rs 52 Crores at Stake
Sharad Natani reports: Pharmaceutical giant Alkem Laboratories confirmed Friday that a cybersecurity incident led to a fraudulent transfer of Rs 52 crore from one of its subsidiaries. While the company maintained the impact was minimal and confined to a specific incident, the disclosure raises concerns about vulnerabilities in India’s pharmaceutical sector to cyberattacks. Without revealing…
Fertility Test Lab Will Pay $1.25M to Settle Breach Lawsuit
In 2021, Quest-owned ReproSource Fertility Diagnostics disclosed a ransomware attack in August potentially affecting 350,000 patients. One month after disclosure, they were sued. Now Marianne Kolbasuk McGee reports that there is a settlement. A Massachusetts federal court preliminarily approved the proposed settlement on Wednesday. The proposed class action litigation, which consolidated two similar lawsuits against…
Ransomware wrecks Paraguay’s largest telco
I’ve said it before, and I’ll say it again: If you’re not subscribed to Catalin Cimpanu’s Risky Business Newsletter, you’re missing out. From the newsletter: A ransomware attack has wreaked havoc inside the network of Tigo, the largest mobile operator and internet service provider in Paraguay. The incident took place last Thursday, January 4, and…
Finland warns of Akira ransomware wiping NAS and tape backup devices
Bill Toulas reports: The Finish National Cybersecurity Center (NCSC-FI) is informing of increased Akira ransomware activity in December, targeting companies in the country and wiping backups. The agency says that the threat actor’s attacks accounted for six out of the seven cases of ransomware incidents reported last month. Wiping the backups amplifies the damage of the attack and allows…