Bill Toulas reports: Taiwanese PC parts maker MSI (Micro-Star International) has been listed on the extortion portal of a new ransomware gang known as “Money Message,” which claims to have stolen source code from the company’s network. MSI is a global hardware giant that makes motherboards, graphics cards, desktops, laptops, servers, industrial systems, PC peripherals,…
NuLife Med settles class action lawsuit over March 2022 data breach
Top Class Actions reports that NuLife Med LLC has agreed to settle claims it failed to protect patient information in a March 2022 data breach. On May 9, the New Hampshire medical devices firm reported a breach to HHS that affected 81,244 patients. In their website notice, they noted that the types of personally identifiable…
Covid Contact-Tracing Contractor Settles Data Breach Lawsuit
Christopher Brown reports: Insight Global LLC will pay up to $5,000 each to victims of an April 2021 data breach involving Covid-19 contact-tracing data to compensate them for extraordinary out-of-pocket losses, in a settlement given final approval by a federal judge. Lisa Chapman filed the proposed class action against Insight and the Pennsylvania Department of…
NL: Software supplier Nebu ordered by court to provide more information about data breach
There is a significant update to a breach at Nebu software that may have impacted millions of Dutch people. As reported previously, Blauw took Nebu to court, seeking an injunction to require Nebu to provide more information on the breach. The hearing was yesterday, and the court issued an order. NU.nl reports (machine translation): ……
Customers of Winnipeg’s Thermea spa alarmed after notification of significant data breach
Ozten Shebakheget reports: The parent company of a popular luxury spa in Winnipeg is in hot water after a data breach potentially opened the door for hackers to access a variety of private information from customers. This week, customers who purchased gift certificates from Thermea spa between early November and late February were told in an…
OCR Labs denies breach report details, patches vulnerability
Chris Burt reports: A vulnerability allegedly exposing sensitive credentials of Australian financial institutions has been closed by OCR Labs, after being discovered and disclosed by Cybernews researchers. The biometric liveness detection API used by OCR Labs is among the exposed data, according to the report. OCR Labs takes issue with details in the report, however, telling Biometric Update that the…