DESORDEN Group has added a new transparency demand to their attacks against Malaysian entities: victims must disclose the breach publicly if they have not paid the attackers. If the victim doesn’t disclose and Malaysian media does not report the incident, Malaysia should expect more breaches. The added demands arose after DESORDEN claimed they spent hours…
Albania weighed invoking NATO’s Article 5 over Iranian cyberattack
Maggie Miller reports: Albania was hit by cyberattacks earlier this year so debilitating that the government considered invoking a NATO declaration that could have pulled all member states into confrontation with Iran, Prime Minister Edi Rama said. It would have been the first time a NATO member state used a cyberattack to invoke Article Five…
Sydney teenager charged after allegedly blackmailing 93 Optus customers affected by data breach
Jake Lapham reports: A 19-year-old Sydney man has been charged after allegedly using information obtained during last month’s Optus data breach to blackmail people. It is alleged the man threatened 93 customers via text messages, saying he would use their details to commit financial crimes unless they paid $2,000. No customers paid the money. Australian…
WA: Columbia River Mental Health Services discloses long-running breach
Columbia River Mental Health Services in Vancouver, Washington has issued a press release about a breach that went undetected for approximately one year. From their press release: Columbia River Mental Health Services (“CRMHS”) recently became aware of suspicious activity related to certain CRMHS email accounts. CRMHS immediately launched an investigation, with the assistance of third-party…
Third servicer entangled in massive data breach litigation
Andrew Martinez reports: The legal fallout from a massive data breach impacting over 4 million borrowers’ personally identifiable information just got bigger. A federal judge Monday ordered a class action lawsuit against Community Loan Servicing be folded into a larger, similar suit against two of its sister companies, according to court records. The consolidated complaints from…
Former Uber security chief found guilty of covering up data breach
Maria Dinzeo reports: In a verdict with far-reaching implications for security chiefs nationwide, a federal jury convicted Uber’s former head of security Joe Sullivan on Wednesday of concealing a 2016 data breach from authorities and obstructing an investigation by the Federal Trade Commission into Uber’s security practices. Sullivan had only been on the job a…