Ben Lovejoy reports: Some 278,531 Instacart customer records have reportedly been hacked, and are for sale on the dark web. The data includes names, email addresses, the last four digits of credit card numbers, and order histories … Instacart denies that there has been any breach, and says that if any data is real, it didn’t come…
NY Charges First American Financial for Massive Data Leak
Brian Krebs reports: In May 2019, KrebsOnSecurity broke the news that the website of mortgage title insurance giant First American Financial Corp. had exposed approximately 885 million records related to mortgage deals going back to 2003. On Wednesday, regulators in New York announced that First American was the target of their first ever cybersecurity enforcement action in…
Walmart reports that some patient data may have been stolen by looters during civil unrest
I think this is the first notice I’ve seen of this kind. Notice of Data Incident A number of retail establishments across the country have recently been impacted by widespread civil unrest. On May 31, 2020, Walmart pharmacies at the following locations were impacted by this civil unrest: Store 2648 at 1919 Davis Street in…
FoxRothschild: U.S. States And Territories Data Breach Statutes (Updated)
Fox Rothschild’s Privacy and Data Security practice group maintains this searchable PDF document as well as the Data Breach 411 app to inform businesses of the breach notification statutes in each of the 50 states, Guam, Puerto Rico and the U.S. Virgin Islands, so they can better understand their rights, obligations and potential liability. Download…
US charges two Chinese spies for a global hacking campaign that targeted COVID-19 research
Zack Whittaker reports: U.S. prosecutors have charged two Chinese nationals, said to be working for China’s state intelligence bureau, for their alleged involvement in a massive global hacking operation that targeted hundreds of companies and governments for more than a decade. The 11-count indictment, unsealed Tuesday, alleges Li Xiaoyu, 34, and Dong Jiazhi, 33, stole terabytes…
Twitter Alerts Irish Privacy Regulator About Hacker Attack
Stephanie Bodoni reports: Twitter Inc. has alerted a European Union data protection watchdog about the cyber-attack it fell victim to last week, days after the company said hackers had targeted just some 130 accounts and didn’t steal any passwords. The Irish Data Protection Commission has received a notification about the incident, said Graham Doyle, a spokesman…