Politie reports: On Tuesday 10 September, a 19-year-old man from Amersfoort was arrested on suspicion of phishing. The suspect had already been convicted three times for committing similar acts. 1 cent fraud Earlier this year, the police received a report from a bank. This bank found that several customers had fallen victim to phishing in…
Thousands of Vastaamo leak victims seek higher compensation
YLE reports: Two lawyers representing some victims of the massive Vastaamo psychotherapy centre data breach say their clients are dissatisfied with the compensation amounts announced by the State Treasury. In late August, Treasury service director Tuomo Yliluoma estimated to Yle that Vastaamo’s victims will receive an average of 500–1,500 euros in damages for attempted or aggravated extortion….
Feeld dating app’s security too open-minded as private data swings into public view
Connor Jones reports: Security researchers have revealed a litany of failures in the Feeld dating app that could be abused to access all manner of private user data, including the most sensitive images not intended to be kept or shared. Feeld caters to “open-minded individuals” – those specifically interested in exploring alternative relationship models such…
The US is Preparing Criminal Charges in Iran Hack Targeting Trump, AP Sources Say
Associated Press reports: The Justice Department is preparing criminal charges in connection with an Iranian hack that targeted Donald Trump’s presidential campaign in a bid to shape the outcome of the November election, two people familiar with the matter said Thursday. It was not immediately clear when the charges might be announced or whom precisely…
Wow: Boar’s Head provides a master class in incident response and transparency
How often have you seen DataBreaches heap praise on an entity for its incident response or transparency? Not too often, right? But DataBreaches is super-impressed by how Boar’s Head has responded to a food safety incident. No, this wasn’t any data security breach or privacy data breach, but it was an incident that had harmed…
Multiple attacks forces CISA to order agencies to upgrade or remove end-of-life Ivanti appliance
Jonathan Greig reports: The nation’s top cyber watchdogs urged federal agencies to either remove or upgrade an Ivanti appliance that is no longer being updated and has been exploited in attacks. The technology company updated an advisory on Friday warning that a “limited number of customers” were breached through the exploitation of CVE-2024-8190. The bug was announced…