Collaborate Disseminate
Seen on DENTONS: May 15, 2024 The landscape of data privacy claims in England and Wales has recently become more hostile to data breach claims by individuals, in the context of both representative actions (such as Lloyd v Google, which we discuss fully… Continue reading Farley v Equiniti: an uphill battle for data breach claims
Pierluigi Paganini On Christmas Eve, a cyberattack targeting the Ohio Lottery resulted in the exposure of personal data belonging to 538,959 individuals. The organization is notifying the impacted people. Attackers gained access to names or other perso… Continue reading Ohio lottery data breach impacted over 538,000 individuals
Remy Samuels reports: A participant in a retirement plan managed by J.P. Morgan Chase & Co. has initiated legal action against the company following recent reports of a data breach where over 451,000 plan participants’ personal details were exposed… Continue reading J.P. Morgan Sued For Data Exposure
Connor Jones reports: UK Government has confirmed a cyberattack on the payroll system used by the Ministry of Defence (MoD) led to “malign” forces accessing data on current and a limited number of former armed forces personnel. There is no … Continue reading UK opens investigation of MoD payroll contractor after confirming attack
In December 2023, UW’s Fred Hutchinson Cancer Center (“Fred Hutch”) reported a November cyberattack that involved the exfiltration of patient data and attempted extortion of patients. DataBreaches contacted Fred Hutch on December 8 t… Continue reading Fred Hutch notifies more patients of November 2023 attack
A comment by Canadian attorney David Fraser caught my eye on Infosec.Exchange: This decision is going to be significant for all lawyers who work in cyber incident response and breach coaching. The IPC’s decision that forensic reports are NOT priv… Continue reading Forensic reports are NOT privileged — Ontario Divisional Court
On Monday 6th May, Netcraft will be heading to San Francisco along with thousands of other cyber security professionals for RSA Conference 2024. If you’re attending too, we thought we’d share a few insights into how it all started. Use them in line for coffee or at an evening event to show off your extensive knowledge of asymmetric cryptography algorithms (that’s a mouth full). If you’re at the event and would like to say hello, visit us at booth 362 in the South Expo Hall or register here and we’ll reach out.
RSA is one of the oldest encryption algorithms that is still widely used today for secure data transmission. It was originally published in 1977 and is classed as a public-key or asymmetric cryptography algorithm meaning it has two separate keys, one to encrypt data and a different one to decrypt. If two parties want to talk, each party can send the other party a public encryption key that they can use to encrypt messages they wish to send. They can both keep their decryption key private, making it a secure way of sending secret messages.
A diagram showing the asymmetric cryptography technique used by the RSA algorithm.
RSA however, is a relatively slow algorithm and so is not commonly used to directly encrypt user data. Instead, it can be used to transmit keys for symmetric cryptography, a class of encryption algorithm where the same key is used to both encrypt and decrypt the data. The symmetric algorithm is usually much faster and used for bulk encryption and decryption of the data. This use of RSA is one of the methods that can be used in TLS which is widely known for authenticating and securing connections across the internet such as in browsers, mobile apps and even over-the-air updates …
Continue reading RSA Conference 2024 – Where it all started and where to find our team
CTV News reports: All 79 locations of pharmacy and retail chain London Drugs are shut down Sunday, and there is no estimate on when they will be back open. A customer service representative told CTV News “all of our systems are down” and the stores are… Continue reading All London Drugs stores closed across Western Canada due to “operational issue”
In the April 2024 survey we received responses from 1,092,963,063 sites across 267,934,761 domains and 12,872,291 web-facing computers. This reflects a gain of 2.8 million sites, a loss of 3.9 million domains, and a gain of 244,716 web-facing computers.
OpenResty was the only vendor to gain sites this month. It gained 5.0 million sites (+4.69%), increasing its market share to 10.2% (+0.43pp) of sites seen by Netcraft.
Cloudflare suffered the largest loss of 8.4 million sites (-6.84%) this month, reducing its market share to 10.4% (-0.80pp). Its loss was primarily driven by Freenom exiting the domain name business, resulting in the disappearance of almost all .tk, .cf and .gq sites. nginx experienced the next largest loss of 2.4 million sites (-0.98%).
| Developer | March 2024 | Percent | April 2024 | Percent | Change |
|---|---|---|---|---|---|
| nginx | 243,233,430 | 22.31% | 240,853,969 | 22.04% | -0.28 |
| Apache | 219,928,546 | 20.17% | 219,442,734 | 20.08% | -0.10 |
| Cloudflare | 122,550,581 | 11.24% | 114,173,199 | 10.45% | -0.80 |
| OpenResty | 106,067,836 | 9.73% | 111,039,981 | 10.16% |
A press release from medical technology firm LivaNova PLC indicates that patients of LivaNova U.S. are being notified of a breach first disclosed in November of 2023. An investigation at the time indicated that their systems were first accessed witho… Continue reading LivaNova to notify U.S. patients of October 2023 ransomware incident