A cyberattack on a U.K. accounting firm wound up leaking U.S. patient data. Now what?

DataBreaches would have passed over a listing on LockBit3.0’s site if Brett Callow hadn’t kindly called our attention to it. The listing by the threat actors was for  HSKS Greenhalgh Chartered Accountants and Business Advisors, and LockBit … Continue reading A cyberattack on a U.K. accounting firm wound up leaking U.S. patient data. Now what?

Does claiming you were hacked when you had really just screwed up violate the FTC Act?

On November 12, DataBreaches published an OpEd, If entities continue to obfuscate and lie, it’s time to mandate more transparency in breach disclosures. Today, we post another example of why we need to legislate and enforce data breach notification law… Continue reading Does claiming you were hacked when you had really just screwed up violate the FTC Act?

States settle with Morgan Stanley for $6.5 million over data security incidents

In addition to Florida, represented by Consumer Protection Division Multistate and Privacy Bureau Chief Patrice Malloy and Senior Assistant Attorney General Diane Oates, the following states joined the action: Connecticut, Indiana, New Jersey, New York… Continue reading States settle with Morgan Stanley for $6.5 million over data security incidents

Ie: “Thousands of drivers have sensitive data exposed to hackers in major IT breach”

What is one headline writer’s “major IT breach” may be a blogger’s “data leak.”  Adrian Weckler reports: The driving licences of thousands of motorists who had vehicles towed on behalf of the gardaí were left at the … Continue reading Ie: “Thousands of drivers have sensitive data exposed to hackers in major IT breach”

Inmediata settles multi-state litigation for $1.14 million; will improve data security and breach notification practices

Indiana Attorney General Rokita led a coalition of 33 attorneys general in a multi-state investigation and litigation against health care clearinghouse Imnediata stemming from a breach disclosed in 2019. Background In January 2019, HHS OCR alerted Inme… Continue reading Inmediata settles multi-state litigation for $1.14 million; will improve data security and breach notification practices