Judy Greenwald reports: A federal appeals court reversed a lower court Wednesday and ruled an American International Group Inc. unit is obligated to defend a retailer in connection with a data breach. Houston-based Landry’s Inc., which operates retail properties including restaurants, hotels and casinos, discovered a data breach that occurred between May 2014 and December…
Fraud Family phishing-as-a-service disrupted in the Netherlands
Catalin Cimpanu reports: Police officers arrested a 24-year-old man from the city of Arnhem and a 15-year-old boy from the town of Loenen aan de Vecht. Investigators said the former developed the phishing kits, while the latter had been responsible for selling access to the tools developed by his partner. Police also searched the house…
California Breach Regulations Applicable to Health Care Facilities Align “Breach” Definition with HIPAA, Expand Reporting Obligations, and Clarify Penalty Structure
Jennifer Hennessy, Chloe Talbert, and Jennifer Urban of Foley Lardner write: California clinics, health facilities, home health agencies, and licensed hospices required to report breaches to the California Department of Public Health (CDPH) under California’s Health and Safety Code Section 1280.15 (Section 1280.15) are now subject to a new set of regulations. Section 1280.15, which has been in…
German pharmacies stop issuing COVID vaccine passes after security breach
Update: I had originally linked to a report on Reuters. @Ju916 tweeted to me: First of all those were no threat actors but security researches demonstrating problems of the system in good faith. Second: those digital certificates are just comodity items. The original document (a yellow vaccination passport) can replace them in any situation. Because…
Gun owners’ fears after firearms dealer data breach
Holly Clemens & Chris Vallance report: Thousands of names and addresses belonging to UK customers of a leading website for buying and selling shotguns and rifles have been published to the dark web following a “security breach”. Guntrader.uk told the BBC it learned of the breach on Monday and had notified the Information Commissioner’s Office….
UK: Oxford City Council apologizes after mailing error involving rent statements
Eirian Jane Prosser reports: OXFORD City Council have apologised to residents after a ‘computer error’ caused a potential data breach over rent statements. The apology comes after locals raised the alarm of the potential breach after they recieved the wrong rent statement in the post. Read more on Oxford Mail.