In what seems like a mind-boggling OPSEC #FAIL, a U.K. man associated with thedarkoverlord allegedly used his real details to create bank accounts as well as to open email accounts, phone numbers, vpn, Twitter, and PayPal accounts that thedarkoverlord used as part of its operations to hack and extort victims. For a group that signed…
FTC Finalizes Settlement with Utah Company and its former CEO over Allegations they Failed to Safeguard Consumer Data
The Federal Trade Commission has granted final approval to a settlement with a Utah-based technology company related to allegations that the firm failed to put in place reasonable security safeguards, allowing a hacker to access the personal information of more than a million consumers. The FTC alleged that InfoTrax Systems, L.C. and its former CEO Mark Rawlins failed to…
New Orleans continues recovery efforts after cyberattack
This really has been a serious attack in terms of time and effort to recover. According to previous coverage from NOLA, The attack began Dec. 13 after an employee apparently responded to an email seeking credentials to access the city’s system. The city declared a state of emergency and has been working since then to bring…
Maze Ransomware Sued for Publishing Victim’s Stolen Data; Irish ISP hosting MazeNews takes down site
Lawrence Abrams reports: The anonymous operators behind the Maze Ransomware are being sued by a victim for illegally accessing their network, stealing data, encrypting computers, and publishing the stolen data after a ransom was not paid. The company suing Maze is Southwire, a leading wire and cable manufacturer from Carrollton, Georgia, who was attacked in December…
Air China suspends flight attendant over personal data breach involving 20 celebrities
Alice Yan reports: An Air China flight attendant accused of publishing personal information on social media about the celebrities he served in the air has been suspended, the company said on Friday. The airline launched an investigation after aviation industry blogger Chao Cewei blew the whistle on a post made on Weibo – China’s Twitter-like…
OR: Klamath County Veterans Service Office Provides Notice of Data Security Incident
On January 2, 2019, Klamath County notified individuals that their personal information was affected by a Veterans Service Office data security incident. On September 19, 2019, the Klamath County IT Department became aware of unusual activity of one of its Veterans Service Office employee’s email accounts. Klamath County immediately launched an investigation and determined that the Veterans Service Office employee’s email…