Jim Ruble writes: In January 2021, a nationwide mail-order pharmacy located in Massachusetts experienced a data breach. The pharmacy discovered the breach in May 2021 and investigated to determine its scope. Personally identifiable information (PII), including names and Social Security numbers for more than 75,000 customers, was breached. In February 2022, 9 months after the…
Hackers breach Norwegian dam, open valve at full capacity
Catalin Cimpanu reports: Unidentified hackers have breached the systems of a Norwegian dam and opened its water valve at full capacity in an incident this April. The incident took place at the Lake Risevatnet dam near the city of Svelgen in Southwest Norway. The valve ran at full capacity for four hours before the unauthorized change was…
Patient death at London hospital linked to cyber attack on NHS
Rebecca Whittaker reports: The death of a patient has been linked to a cyber-attack on the NHS last year. Cyber criminals attacked two major NHS trusts causing more than 1,000 cancer treatment delays, 2,000 outpatient appointments to be cancelled and more than 1,000 operations postponed. King’s College Hospital NHS Foundation Trust said on Wednesday; a patient died during the cyber…
ShinyHunters and team members arrested in France (2)
The following are machine-translated bits and pieces from a fuller news story by Jean-Michel Décugis and Damien Licata Caruso: The FBI’s arrest of Conor Brian Fitzpatrick, aka “Pompompurin,” in March 2023 dealt a first blow to “Breached.” This American citizen was suspected of being the main manager of the platform, which had temporarily ceased operations….
Texas Enacts Liability Shield From Punitive Damages for Certain Small Businesses That Adopt Cybersecurity Programs
Joseph J. Lazzarotti and Phillip A. Baggett of JacksonLewis write: On June 20, 2025, Texas Governor Greg Abbott signed SB 2610 into law, joining a growing number of states that aim to incentivize sound cybersecurity practices through legislative safe harbors. Modeled on laws in states like Ohio and Utah, the new Texas statute provides that certain businesses…
Dublin ETB fined €125,000 for data protection breaches
Cianan Brennan reports: Dublin’s Education and Training Board (CDETB) has been fined €125,000 by the Data Protection Commission after the personal details of 13,000 grant applicants were made available to “unauthorised persons”. The commission concluded after a six-year investigation that the ETB had breached GDPR in multiple ways by both failing to ensure sufficient security…