Bill Toulas reports: Sony Interactive Entertainment (Sony) has notified current and former employees and their family members about a cybersecurity breach that exposed personal information. The company sent the data breach notification to about 6,800 individuals, confirming that the intrusion occurred after an unauthorized party exploited a zero-day vulnerability in the MOVEit Transfer platform. Read more…
“Sébastien had a large rock threatening to fall on his head” — Paul Raoult, on his son’s plea deal
On September 27, the U.S. Department of Justice announced that Sébastien Raoult (aka “Sezyo Kaizen”), a 22-year-old French national who had been extradited to the U.S., pleaded guilty to two of nine counts alleging fraud and aggravated identity theft. DataBreaches had been covering his case since he was detained in Morocco on a red notice…
Against advice of board attorney and feds, David Archie reveals how much Hinds County paid hackers after cyberattack
Bravo for standing up for transparency! C.J. LeMaster reports: Hinds County Supervisor David Archie revealed how much officials paid hackers after a cyberattack crippled county services for weeks, against the advice of the board’s attorney and federal investigators, with Archie arguing taxpayers have a right to know what’s going on with their tax dollars. The…
8 rules for “civilian hackers” during war, and 4 obligations for states to restrain them
Written by Tilman Rodenhäuser and Mauro Vignati: As digital technology is changing how militaries conduct war, a worrying trend has emerged in which a growing number of civilians become involved in armed conflicts through digital means. Sitting at some distance from physical hostilities, including outside the countries at war, civilians – including hacktivists, to cyber security professionals,…
Melissa: ransomware prevention partnership
From Politie, this press release: Driebergen – The Public Prosecution Service (OM), the police, the National Cyber Security Center (NCSC), Cyberveilig Nederland and various private parties* from the cybersecurity sector today signed the ‘Melissa’ covenant. Melissa is a partnership between these public and private parties to combat ransomware attacks. The shared goal is to make the Netherlands…
Pathology Lab Has Most of Patient’s Data Breach Claims Dismissed
Bernie Pazanowski reports: A patient at a pathology laboratory who suffered a data breach can pursue his negligence claim against Molecular Pathology Laboratory Network, Inc., but all of his other claims were dismissed. Tri Thai said that the company was subject to a “massive and preventable cyberattack” that it discovered on Dec. 17, 2021. He…