Lawrence Abrams reports: Cybersecurity giant Fortinet has confirmed it suffered a data breach after a threat actor claimed to steal 440GB of files from the company’s Microsoft Sharepoint server. Fortinet is one of the largest cybersecurity companies in the world, selling secure networking products like firewalls, routers, and VPN devices. The company also offers SIEM,…
Locked In, Locked Out: How Data Breaches Shatter Refugees’ Safety
Noura Aljizawi of the Citizen Lab at the University of Toronto’s Munk School of Global Affairs and Public Policy writes: Rawia* is a Syrian activist in Turkey and a mother of three beautiful children. She kept her children at home, locked the doors, closed the windows, and told them not to speak loudly so people…
Arrest made in NCA investigation into Transport for London cyber attack
A teenager has been arrested in Walsall by the National Crime Agency, as part of the investigation into a cyber security incident affecting Transport for London (TfL). The 17-year-old male was detained on suspicion of Computer Misuse Act offences in relation to the attack, which was launched on TfL on 1 September. The NCA is…
Proposed $65 million Lehigh Valley Health Network data breach settlement may compensate some victims $80,000
In 2023, a ransomware attack against Lehigh Valley Health Network by AlphV (BlackCat) involved the threat actors leaking nude photos of some cancer patients. In reporting on one of the first class action lawsuits launched against LVHN, DataBreaches pointed out how significant this situation and litigation might be, in part, because of the nude photos…
IRS Information Technology Supervisor Pleads Guilty to Accepting Bribes from Government Subcontractor Whom He Attempted to Extort
Today’s insider-wrongdoing example comes to us from the government sector. The Office of Public Affairs for the U.S. Department of Justice issued the following press release: A Maryland man pleaded guilty yesterday to accepting cash bribes in exchange for helping acquaintances and their businesses procure and continue work on subcontracts with the IRS. According to…
Attleboro crisis pregnancy center stole data, tricked patients, lawsuit alleges
Beth Treffeisen reports: A women’s gynecological clinic in Attleboro is suing a neighboring crisis pregnancy center, accusing it of hacking its confidential online portal and misleading patients to prevent abortion. Four Women Health Services alleges that Attleboro Women’s Health Center, also named Abundant Hope Pregnancy Resource Center, broke computer fraud, consumer protection, and wiretapping laws…