Protenus has released its monthly Breach Barometer, and the statistics for November were something to be thankful for – even if they turn out to be just a brief break from the crush of breach reports we’ve seen every month. As Protenus reports, there were 28 incidents first disclosed during November. We were able to…
Lime Crime settles lawsuit over 2015 data breach
Back in February, 2015, this site noted that vegan makeup company Lime Crime had reportedly been hacked, and that some customers were voicing their displeasure over the firm’s security and lack of responsiveness when problems had been noted. Not surprisingly, then, some customers filed suit over the data breach. And also not surprisingly, neither the…
Romania arrests five suspected members of major ransomware gang
A press release from Europol earlier today: During the last week, Romanian authorities have arrested three individuals who are suspected of infecting computer systems by spreading the CTB-Locker (Curve-Tor-Bitcoin Locker) malware – a form of file-encrypting ransomware. Two other suspects from the same criminal group were arrested in Bucharest in a parallel ransomware investigation linked…
Pinterest notifies users of suspicious activity
As submitted to the California Attorney General’s site: Subject: Important information about your Pinterest account Hi [Name], We’re writing to share important information about your account, including recommendations about how to make your account more secure. As explained below, we have detected suspicious activity on your account, and you need to {log in with your Google…
Encryption protected Golden Optometric patients’ EHR from CrySiS attack
It’s nice to read a notification where an entity had good defenses in place. Consider this notification from Golden Optometric in California: Early on the morning of November 6, 2017, the network server at Golden Optometric was infected with a variant of the “CrySiS” ransomware virus, which encrypted a limited number of files on its…
Banks Find (Some) Success Suing Over Data Breaches
Donna Wilson of Manatt, Phelps & Phillips, LLP writes: Banks continue to file suit against retailers, hoping to shift the costs of data breaches, with some recent success. What happened In January 2016, hackers accessed Eddie Bauer’s point-of-sale register system and installed malicious software that infected every Eddie Bauer store in the United States and…