Ben Lovejoy reports: Twitter GodMode – an internal tool that hackers used to tweet from high-profile accounts, including Apple, back in 2020 – remains available to all of the company’s engineers, according to a new report today. […] The Washington Post reports that a whistleblower reported this to Congress back in October, and it has now been shared…
Court records were lost in debilitating Vanuatu cyber attack
There’s another update to the crippling ransomware attack the archipelago of Vanuatu suffered months ago. RNZ reports: The Vanuatu Chief Justice has confirmed that court records were lost in the ransomware attack on government agency computer systems late last year. Vincent Lunabek said the courts were able to save some offline data concerning the registration…
Riot Games hack: Source codes of League of Legends and TFT stolen by hackers in latest cyber attack; source code allegedly up for auction
IANS reports: Riot Games was a victim of a recent cyber attack over the weekend. After an analysis of the attack, Riot Games has revealed that the source code for its popular video games League of Legends and TFT (Teamfight Tactics) were stolen in the recent cyber attack. In addition, the source code of a legacy anti-cheat platform was also stolen…
Puma investigates claims of leaking more than 230k customers’ data (updated)
Paulina Okunytė reports: Private data allegedly belonging to more than 230,000 Puma customers in Chile has been found on a hacker forum. A threat actor has listed an 84MB-strong dataset for sale that allegedly belongs to the multinational sportswear manufacturer. The cybercriminal or criminals behind the dataset listing claim that it is from Puma’s Chilean…
LastPass owner GoTo says hackers stole customers’ backups
Carly Page reports: LastPass’ parent company GoTo — formerly LogMeIn — has confirmed that cybercriminals stole customers’ encrypted backups during a recent breach of its systems. The breach was first confirmed by LastPass on November 30. At the time, LastPass chief executive Karim Toubba said an “unauthorized party” had gained access to some customers’ information stored in a third-party…
Data Breach Reporting Requirements: A Proposed Rule by the Federal Communications Commission on 01/23/2023
This document has a comment period that ends in 29 days. (02/22/2023) AGENCY: Federal Communications Commission. ACTION: Proposed rule. SUMMARY: In this document, the Federal Communications Commission (Commission) begins the process to update and strengthen its data breach rule to provide greater protections to the public. We propose to expand the Commission’s definition of “breach”…