Brian Krebs reports: In May 2019, KrebsOnSecurity broke the news that the website of mortgage title insurance giant First American Financial Corp. had exposed approximately 885 million records related to mortgage deals going back to 2003. On Wednesday, regulators in New York announced that First American was the target of their first ever cybersecurity enforcement action in…
Walmart reports that some patient data may have been stolen by looters during civil unrest
I think this is the first notice I’ve seen of this kind. Notice of Data Incident A number of retail establishments across the country have recently been impacted by widespread civil unrest. On May 31, 2020, Walmart pharmacies at the following locations were impacted by this civil unrest: Store 2648 at 1919 Davis Street in…
FoxRothschild: U.S. States And Territories Data Breach Statutes (Updated)
Fox Rothschild’s Privacy and Data Security practice group maintains this searchable PDF document as well as the Data Breach 411 app to inform businesses of the breach notification statutes in each of the 50 states, Guam, Puerto Rico and the U.S. Virgin Islands, so they can better understand their rights, obligations and potential liability. Download…
US charges two Chinese spies for a global hacking campaign that targeted COVID-19 research
Zack Whittaker reports: U.S. prosecutors have charged two Chinese nationals, said to be working for China’s state intelligence bureau, for their alleged involvement in a massive global hacking operation that targeted hundreds of companies and governments for more than a decade. The 11-count indictment, unsealed Tuesday, alleges Li Xiaoyu, 34, and Dong Jiazhi, 33, stole terabytes…
Twitter Alerts Irish Privacy Regulator About Hacker Attack
Stephanie Bodoni reports: Twitter Inc. has alerted a European Union data protection watchdog about the cyber-attack it fell victim to last week, days after the company said hackers had targeted just some 130 accounts and didn’t steal any passwords. The Irish Data Protection Commission has received a notification about the incident, said Graham Doyle, a spokesman…
University of York hit by cyber-attack – personal details of students and staff may have been stolen
Daniel Willers has coverage on the Blackbaud ransomware attack, noted previously on this site: The University of York has launched an investigation after personal details of students, staff and alumni may have been stolen by hackers. It said Blackbaud, which provides a customer relationship management system for the university, was hit by a ransomware attack in…