Tatsuya Sudo reports: A Chinese group that has been accused by the U.S. government in a series of cybertheft cases around the world is now suspected in the 2016 hacking of the computer system used by Keidanren (Japan Business Federation). Keidanren officials announced in November 2016 that 23 computers used in the federation’s system had…
Directors and Officers Settle Over Yahoo Hack: A New Chapter in Derivative Litigation?
Craig A. Newman of Patterson Belknap writes: Yesterday, a Superior Court judge in Santa Clara, California approved what is believed to be the first monetary award to a company in a data breach-related derivative lawsuit. Until now, such breach-related derivative cases have settled through a combination of governance changes and modest awards of attorney’s fees. But…
EPIC Seeks to Intervene in Human Rights Case on Government Hacking
From the folks at EPIC.org: EPIC is requesting to intervenein a case before the European Court of Human Rights testing the human rights standards for government hacking of computers and other devices. Brought by international NGO Privacy International, Privacy International v. United Kingdomasks whether remote hacking of devices and the use of malware by UK…
NASA internal app leaked employee emails, project names
Catalin Cimpanu reports: A NASA web app leaked details such as employee usernames, names, email addresses, and project names, ZDNet has learned today from bug hunter Avinash Jain. The exposure originated from one of NASA’s Jira installations, a web app that most companies use for tracking projects or internal bugs and issues. In a report…
Massachusetts Enacts Significant Changes to Its Data Breach Notification Law
David M. Brown of Baker Hostetler writes: On Jan. 10, 2019, Massachusetts Gov. Charlie Baker signed legislation that will significantly amend the state’s data breach notification law. The amendments become effective on April 11, 2019. One of the significant changes includes a new requirement to provide an offer of complimentary credit monitoring for “a period…
PH: Locsin says ‘pissed’ contractor ‘took all’ passport data
Updated January 15: Locsin subsequently clarified his claim and said that no data had been removed or stolen, but had been made inaccessible. See this report. Original post: Katrina Domingo reports: MANILA – Some Filipinos renewing their passports may have to present their birth certificates as an additional requirement after a passport production contractor the…