Jessica Lyons Hardcastle reports: Mondelez International has warned 51,000 of its past and present employees that their personal information has been stolen from a law firm hired by the Oreo and Ritz cracker giant. To be clear, the miscreants didn’t infiltrate Mondelez’s IT estate: they broke into Bryan Cave Leighton Paisner LLP‘s network. And as…
Justice Department Announces New National Security Cyber Section Within the National Security Division
The Justice Department today announced the creation of the new National Security Cyber Section – known as NatSec Cyber – within its National Security Division. The newly established litigating section has secured congressional approval and comes in response to the core findings in Deputy Attorney General Lisa O. Monaco’s Comprehensive Cyber Review in July of 2022. “NatSec Cyber will…
Ransomware Gang Haunted US Firms Long Before MOVEit Hack
Jamie Tarabay reports: Shell Plc, IAG SA’s British Airways, the British Broadcasting Corp., the state of Minnesota’s Department of Education, multiple federal agencies — they’re among the victims of the latest data breach launched by Clop, a Russian-speaking hacking group that’s attacking targets around the world in both the public and private sectors. The Clop gang, also known as…
Ransomware affects emergency radiology workflows
June 20, 2023 — Ransomware attacks have a significant effect on emergency radiology workflows, as well as on acute care delivery and the personal well-being of healthcare providers, according to a study published June 15 in the Annals of Emergency Medicine. Researchers led by Liselotte van Boven, MD, from VieCuri Medical Center in Venlo, the Netherlands, found…
Over 100,000 compromised ChatGPT accounts found for sale on dark web
Laura Dobberstein reports: Singapore-based threat intelligence outfit Group-IB has found ChatGPT credentials in more than 100,000 stealer logs traded on the dark web in the past year. The amount of stolen accounts steadily climbed from 74 in June 2022 to 26,902 in May 2023. April 2023 was an outlier – a moderate decline was seen…
FTC Says Genetic Testing Company 1Health Failed to Protect Privacy and Security of DNA Data and Unfairly Changed its Privacy Policy
The Federal Trade Commission charged that the genetic testing firm 1Health.io left sensitive genetic and health data unsecured, deceived consumers about their ability to get their data deleted, and changed its privacy policy retroactively without adequately notifying and obtaining consent from consumers whose data the company had already collected. As part of a proposed settlement with the…