French government agencies hit by cyberattacks of ‘unprecedented intensity’

Alexander Martin reports: A number of French government agencies have been hit by “intense” cyberattacks, the prime minister’s office announced on Monday. The nature of the attacks, which began on Sunday night, has not been confirmed although the descr… Continue reading French government agencies hit by cyberattacks of ‘unprecedented intensity’

BakerHostetler Files Amicus Brief on Behalf of 30 Hospitals and Health Systems

BakerHostetler writes: As noted back in December 2022, the U.S. Department of Health and Human Services Office for Civil Rights (OCR) has issued dramatic guidance (often called the Bulletin) that targets the use of so-called Internet “tracking technolo… Continue reading BakerHostetler Files Amicus Brief on Behalf of 30 Hospitals and Health Systems

Facebook suffers big loss in lawsuit against data-scraping company

Jon Brodkin reports: One year after Meta sued a data-scraping company, a federal judge this week threw out Meta’s breach-of-contract claim because the defendant obtained only public data from Facebook and Instagram. Meta sued Bright Data in Janua… Continue reading Facebook suffers big loss in lawsuit against data-scraping company

Owner of BreachedForums sentenced to time served plus 20 years supervised release with special conditions

Just days after prosecutors in the Eastern District of Virginia recommended that Conor Fitzpatrick, aka “Pompompurin,” be sentenced to at least 15 years in prison, District Judge Leonie M. Brinkema sentenced him to time served and supervise… Continue reading Owner of BreachedForums sentenced to time served plus 20 years supervised release with special conditions

Four-in-ten employees sacked over email security breaches as firms tackle “truly staggering” increase in attacks

Emma Woollacott reports: Nearly half of workers responsible for email security breaches over the last year have been sacked, according to new search, as cyber leaders begin taking a tougher stance amid a surge in attacks. Research from cyber security f… Continue reading Four-in-ten employees sacked over email security breaches as firms tackle “truly staggering” increase in attacks

Follow-on extortion campaign: confirmation of some findings by Arctic Wolf

Bill Toulas of Bleeping Computer reported on a recent Arctic Wolf Labs investigation that caught my eye. Arctic Wolf investigated two cases where victims of the Royal and Akira ransomware gangs who had paid ransoms were subsequently approached by threa… Continue reading Follow-on extortion campaign: confirmation of some findings by Arctic Wolf

Happy 14th Birthday, KrebsOnSecurity!

KrebsOnSecurity celebrates its 14th year of existence today! I promised myself this post wouldn’t devolve into yet another Cybersecurity Year in Review. Nor do I wish to hold forth about whatever cyber horrors may await us in 2024. But I do want to thank you all for your continued readership, encouragement and support, without which I could not do what I do. Continue reading Happy 14th Birthday, KrebsOnSecurity!

Attorney General James Secures $300,000 from NewYork-Presbyterian Hospital for Failing to Protect Patient Data

December 27 NEW YORK – New York Attorney General Letitia James today secured $300,000 from The NewYork-Presbyterian Hospital (NYP) for disclosing the health information of individuals who visited their website. An investigation by the Office of the Att… Continue reading Attorney General James Secures $300,000 from NewYork-Presbyterian Hospital for Failing to Protect Patient Data