The Federal Trade Commission is taking action against the online alcohol marketplace Drizly and its CEO James Cory Rellas over allegations that the company’s security failures led to a data breach exposing the personal information of about 2.5 million consumers. Drizly and Rellas were alerted to security problems two years prior to the breach yet…
Medibank updates incident report; customer data also affected
Medibank has provided yet another update on the ransomware attack previously noted on this site: There has been a further development in Medibank’s cybercrime event, which is subject to a criminal investigation by the Australia Federal Police (AFP). It has become clear that the criminal has taken data that now includes Medibank customer data, in…
UK: ICO fines Interserve £4,400,000 for inadequate data security
Between 18 March 2019 and 1 December 2020 Interserve Limited (“Interserve”) failed to process personal data in a manner that ensured appropriate security of the personal data using appropriate technical and organisational measures as required by Article 5(1)(f) and Article 32 GDPR. This rendered Interserve vulnerable to a cyber-attack which took place in the period…
Blazing South Korean datacenter operator raided by cops, blames its own batteries?
Laura Dobberstein reports: South Korean police have reportedly raided the premises of SK C&C, the operator of the datacenter that caught fire on the weekend of October 15 and disrupted the operations of local web giants Naver and Kakao. […] SK C&C, meanwhile, has apologized for the incident and admitted that uninterruptible power supplies appear…
Binance is ‘narrowing down’ identity of hacker behind $570 million crypto attack, CEO says
Ryan Browne reports: Cryptocurrency exchange Binance is getting closer to figuring out the identity of a hacker that orchestrated a $570 million hack on its BNB blockchain, CEO Changpeng Zhao told CNBC Monday. After getting some tips from law enforcement on who the hacker might be, Binance is now “narrowing down” the person or persons…
Australia to propose increased penalties for data breaches following major cyberattacks
Reuters reports: Australia will introduce laws to parliament to increase penalties for companies subject to major data breaches, Attorney-General Mark Dreyfus said, after high-profile cyberattacks hit millions of Australians in recent weeks. […] Dreyfus, in an official statement issued on Saturday, said the government would next week move to “significantly increase penalties for repeated or serious privacy…