Bill Toulas reports: The Robin Banks phishing-as-a-service (PhaaS) platform is back in action with infrastructure hosted by a Russian internet company that offers protection against distributed denial-of-service (DDoS) attacks. Robin Banks faced operational disruption in July 2022, when researchers at IronNet exposed the platform as a highly threatening phishing service targeting Citibank, Bank of America, Capital One, Wells…
SolarWinds reaches $26m settlement with shareholders, expects SEC action
Jessica Lyons Hardcastle reports: SolarWinds has agreed to pay $26 million to settle a shareholder lawsuit, and it’s also expecting to be slapped with an enforcement action by Uncle Sam – both related to its infamous 2020 supply chain security fiasco, according to the software maker’s most recent US regulatory filing. At the end of…
Boeing Subsidiary Jeppesen’s Services Hit By Cyberattack
Danny Lee reports: Boeing Co. unit Jeppesen has been hit by a cyberattack that’s affecting access to its flight planning software, which is used by airlines globally. “Our subsidiary, Jeppesen, experienced a cyber incident affecting certain flight planning products and services,” Boeing spokesman Yukui Wang said in an email Friday. “There has been some flight planning disruption, but…
Cyberattack Disrupts Trains in Denmark
Eduard Kovacs reports: According to Danish broadcaster DR, all trains operated by DSB, the largest train operating company in the country, came to a standstill on Saturday morning and could not resume their journey for several hours. While this may sound like the work of a sophisticated threat actor that targeted operational technology (OT) systems in…
LinkedIn Scores Partial Win in Long-Running Data Scraping Feud
Andrea Vittorio reports: A workforce analytics firm breached LinkedIn Corp.‘s user agreement by scraping data and using fake accounts to fuel its now-defunct business, a federal court in San Francisco ruled in a lengthy dispute that’s on a path to trial. The ruling, made public Friday, represents a partial win for LinkedIn in a case that…
CT: Brookfield admits ‘blackout pen’ error led to sharing of special education students’ information
Trevor Ballantyne reports: School officials this week acknowledged a failure to properly redact personally identifiable information linked to students receiving special education services from the school district. According to emails obtained by The News-Times, parents accused the district of violating privacy protections laid out under the U.S. Family Education Rights and Privacy Act, or FERPA,…