Larry Rulison reports: Lawyers for patients of Community Care Physicians that were victimized by a cyber ransomware attack last December are suing the accounting firm that the medical practice hired to protect its customer data, some of which was published online. The class-action lawsuit was filed in state Supreme Court in Albany last month against …
FTC Reaches Settlement with Kohl’s over Allegations it Failed to Provide Victims with Information Related to Identity Theft
From the FTC, this press release: Kohl’s Department Stores, Inc. has agreed to pay a civil penalty of $220,000 to settle Federal Trade Commission allegations that the Wisconsin-based retailer violated the Fair Credit Reporting Act (FCRA) by refusing to provide complete records of transactions to consumers whose personal information was used by identity thieves. In…
Researcher claims Pakistan Government’s #Covid19 tracing app leaks user’s private data
French security researcher Baptiste Robert continues to educate the public about security concerns with COVID19 tracking and tracing apps. Based on his analysis that he tweeted, TheDigitalHacker has been reported that the app made by developers of the Pakistan government to track #covid19 uses a 3rd-grade security system that can leak personal data like passwords,…
UK: Babylon Health data breach: GP app users able to see other people’s consultations
The Guardian reports: Babylon Health has suffered a data breach involving confidential patient information, with users of its GP video consultation app allowed to see other patients’ appointments. The breach emerged when one of its users discovered they had access to video recordings of other patients’ consultations. Read more on The Guardian, although some of…
Hackers for hire ‘targeted hundreds of institutions’
Paul Murphy in London and Kadhim Shubber in Washington report: A hackers-for-hire group dubbed “Dark Basin” has targeted thousands of individuals and hundreds of institutions around the world, including advocacy groups, journalists, elected officials, lawyers, hedge funds and companies, according to the internet watchdog Citizen Lab. Researchers discovered almost 28,000 web pages created by hackers…
Coinsquare Data Theft Flags Insider Threat Issue
CISO Mag reports: Coinsquare, a Canadian crypto exchange that enables its users to trade Bitcoin, Ethereum, and other cryptocurrencies, confirmed that its customer information was stolen by an ex-employee last year. Cybercriminals laid their hands on this data and are now reportedly going to carry out SIM swapping attacks. According to Stacey Hoisak, Coinsquare’s general…