DataBreaches.Net – Page 35 – The Office of Inadequate Security

Deal made with whistleblower after Columbus’ data leak drew global attention, deal still muzzles whistleblower

Posted on September 13, 2024September 13, 2024 by Dissent

There’s an update to a disturbing story that involved a Franklin County judge granting the City of Columbus a temporary restraining order against Connor Goodwolf. Goodwolf has been providing information to the media and the public about a ransomware attack on the city and was refuting the city’s claims about the impact of the attack…

Highline Public Schools addresses computer hack with a FAQ

Posted on September 13, 2024 by Dissent

Highline Public Schools issued an FAQ about the cybersecurity incident they first detected September 7. The incident resulted in school closures for Monday through Wednesday, but classes resumed yesterday. Their FAQ was last updated on Wednesday. You can read the FAQs on the district’s site. While it asks a number of questions, it declines to…

Fortinet confirms data breach after hacker claims to steal 440GB of files

Posted on September 13, 2024 by Dissent

Lawrence Abrams reports: Cybersecurity giant Fortinet has confirmed it suffered a data breach after a threat actor claimed to steal 440GB of files from the company’s Microsoft Sharepoint server. Fortinet is one of the largest cybersecurity companies in the world, selling secure networking products like firewalls, routers, and VPN devices. The company also offers SIEM,…

Locked In, Locked Out: How Data Breaches Shatter Refugees’ Safety

Posted on September 12, 2024September 12, 2024 by Dissent

Noura Aljizawi of the Citizen Lab at the University of Toronto’s Munk School of Global Affairs and Public Policy writes: Rawia* is a Syrian activist in Turkey and a mother of three beautiful children. She kept her children at home, locked the doors, closed the windows, and told them not to speak loudly so people…

Arrest made in NCA investigation into Transport for London cyber attack

Posted on September 12, 2024 by Dissent

A teenager has been arrested in Walsall by the National Crime Agency, as part of the investigation into a cyber security incident affecting Transport for London (TfL). The 17-year-old male was detained on suspicion of Computer Misuse Act offences in relation to the attack, which was launched on TfL on 1 September. The NCA is…

Proposed $65 million Lehigh Valley Health Network data breach settlement may compensate some victims $80,000

Posted on September 12, 2024 by Dissent

In 2023, a ransomware attack against Lehigh Valley Health Network by AlphV (BlackCat) involved the threat actors leaking nude photos of some cancer patients. In reporting on one of the first class action lawsuits launched against LVHN, DataBreaches pointed out how significant this situation and litigation might be, in part, because of the nude photos…