Collaborate Disseminate
Wilfred Chan reports: Providers of critical infrastructure in the United States are doing a sloppy job of defending against cyber intrusions, the National Security Council tells Fast Company, pointing to recent Iran-linked attacks on U.S. water utiliti… Continue reading U.S. water utilities were hacked after leaving their default passwords set to ‘1111,’ cybersecurity officials say
Daryna Antoniuk reports: Kazakhstan will reportedly extradite a prominent Russian cybersecurity expert to Moscow after refusing to send him to the U.S. Nikita Kislitsin, who was detained in Kazakhstan earlier in June at the request of the U.S., will fa… Continue reading Kazakhstan to extradite Russian cyber expert to Moscow despite US requests
Katie Palmer reports: Odds are, you’ve gotten at least one of the unnerving letters in your mailbox this year: “We’re writing to inform you of a cybersecurity incident,” it might start. It’s the standard notice many health care organizations are requir… Continue reading Health data breaches hit an all-time high in 2023
Harvey Kong reports: Popular online marketplace Carousell violated Hong Kong’s privacy laws, a watchdog said on Thursday, following the discovery of the personal data of more than 320,000 local users available for sale on the dark web. The Office of th… Continue reading Online platform Carousell violated Hong Kong privacy laws, watchdog finds, after data of over 320,000 locals leaked
Hunton Andrews Kurth writes: On December 14, 2023, the Court of Justice of the European Union (“CJEU”) issued its judgment in the case of VB v. Natsionalna agentsia za prihodite (C‑340/21), in which it clarified, among other things, the concept of non-… Continue reading Court of Justice of the European Union Rules That Fear May Constitute Damage Under the GDPR
From Interpol: LYON, FRANCE – A transcontinental police operation against online financial crime has concluded with almost 3,500 arrests and seizures of USD 300 million (approx. EUR 273 million) worth of assets across 34 countries. The six-month Operat… Continue reading USD 300 million seized and 3,500 suspects arrested in international financial crime operation
In response to the takedown notice on their original leak site and other damage done to their operations as described in the DOJ press release and warrant application that was unsealed today, AlphV posted this: As you all know, the FBI got the keys to … Continue reading AlphV reacts to law enforcement action by allowing affiliates to attack hospitals, critical infrastructure
The timeline from their notification to consumers tells the sad story: Notice of Data Security Incident We are notifying you of a recent data security incident involving your personal information. This notice explains the incident, steps Xfinity has ta… Continue reading Comcast Cable Communications notifies 35,879,455 consumers affected by Citrix incident
FBI Offers Decryption Tool to Over 500 Victims Around the World, Additional Victims Encouraged to Come Forward The Justice Department announced today a disruption campaign against the Blackcat ransomware group — also known as ALPHV or Noberus — that ha… Continue reading Big news from DOJ: Justice Department Disrupts Prolific ALPHV/Blackcat Ransomware Variant
Eduardo Baptista reports: China on Friday proposed a four-tier classification to help it respond to data security incidents, highlighting Beijing’s concern with large-scale data leaks and hacking within its borders. The contingency plan comes am… Continue reading China issues draft contingency plan for data security incidents