There’s a follow-up to a breach previously reported on DataBreaches. From the NYS Attorney General’s Office today: NEW YORK – New York Attorney General Letitia James today secured $500,000 from auto insurance company, Noblr, for failing to protect the personal information of more than 80,000 New Yorkers as part of a data breach. The data breach was…
Israeli hacker alleged to be software dev for LockBit faces extradition to U.S. for role in global ransomware network
Itamar Eichner reports: The International Department of the State Attorney’s Office has petitioned the Jerusalem District Court to declare Rostislav Panev, an Israeli citizen and resident of Haifa, can be extradited to the United States. Panev is wanted for prosecution on charges of conspiracy to commit fraud, cybercrime, wire fraud, and other offenses. The petition,…
Ukrainian National Sentenced to Federal Prison in “Raccoon Infostealer” Cybercrime Case
AUSTIN, Texas – Ukrainian national Mark Sokolovsky was sentenced today to 60 months in federal prison for one count of conspiracy to commit computer intrusion. According to court documents, Sokolovsky, 28, conspired to operate the Raccoon Infostealer as a malware-as-a-service or “MaaS.” Individuals who deployed Raccoon Infostealer to steal data from victims leased access to…
Defending Data Breach Class Actions
Mark P. Henriques of Womble Bond Dickinson has a content-rich post for defense lawyers: Class actions arising from data breach represented the fastest growing segment of class action filings. In 2023, more than 2000 class actions were filed, more than triple the amount filed in 2022.1 These cases were filed in federal and state courts…
Credential phishing attacks up over 700 percent
Ian Barker reports: Phishing remains one of the most significant cyber threats impacting organizations worldwide and a new report shows credential theft attacks surged dramatically in the second half of 2024, rising by 703 percent. The report from SlashNext shows that overall, email-based threats rose by 202 percent over the same period, with individual users receiving…
No need to hack when it’s leaking: Cisco edition
The hacker and forum owner known as “IntelBroker” announced that he and others breached Cisco systems and obtained source code and other valuable information. In a forum post where they offered “partial Cisco” data, they admit that a Cisco error had enabled them to access the data: In October 2024, Cisco accidentally left open their…