On January 20, the data protection officer for Credit Suisse AG filed a breach notification with the Maine Attorney General’s Office. According to their notice, a breach occurred on or about January 1, 2016. The exact date was unknown, and the breach reportedly wasn’t discovered until December 21, 2022. The summary description of the incident…
IN: Wawasee Hit With Ransomware
David Slone reports: Wawasee Community School Corporation is dealing with a possible ransomware attack that began late last week. Ransomware is a type of malicious software that is designed to block access to a computer system until money is paid. According to a statement released to parents Friday, provided by Superintendent Dr. Steve Troyer to…
NIST Requests Comments on Potential Significant Updates to the Cybersecurity Framework
Micaela McMurrough, Ashden Fein, Caleb Skeath, and Matthew Harden of Covington and Burling write: On January 19, 2023, the National Institute of Standards and Technology (“NIST”) published a Concept Paper setting out “Potential Significant Updates to the Cybersecurity Framework.” Originally released in 2014, the NIST Cybersecurity Framework (“CSF” or “Framework”) is a framework designed to assist organizations with…
Australian man given two-year jail sentence for $69K phishing scams
Eileen Yu reports: An Australian man has been sentenced to jail for more than two years over an SMS phishing scam, during which he stole AU$100,000 ($69,751) and targeted 450 victims. The Sydney Local Court found the man guilty of various cybercrime offences, including obtaining and supplying data with intent to commit a computer offence….
Twitter GodMode still available to all engineers, following hack of Apple and other accounts
Ben Lovejoy reports: Twitter GodMode – an internal tool that hackers used to tweet from high-profile accounts, including Apple, back in 2020 – remains available to all of the company’s engineers, according to a new report today. […] The Washington Post reports that a whistleblower reported this to Congress back in October, and it has now been shared…
Court records were lost in debilitating Vanuatu cyber attack
There’s another update to the crippling ransomware attack the archipelago of Vanuatu suffered months ago. RNZ reports: The Vanuatu Chief Justice has confirmed that court records were lost in the ransomware attack on government agency computer systems late last year. Vincent Lunabek said the courts were able to save some offline data concerning the registration…