Collaborate Disseminate
Reuters reports: Hackers have spent up to three years breaking into organizations by targeting monitoring software made by the French company Centreon, France’s cybersecurity watchdog said Monday. The watchdog, known by its French acronym ANSSI, … Continue reading French IT monitoring company’s software targeted by hackers
Eileen Yu reports: Singtel says it is investigating the impact of a cybersecurity breach that may have compromised customer data, after it ascertained on February 9 that “files were taken”. The attack had affected a file-sharing system deve… Continue reading Singtel hit by Accellion security breach, customer data may be leaked
Chris Keall reports: The Reserve Bank was kept in the dark for a crucial five days about a December data breach, Governor Adrian Orr says – contradicting its technology partner’s version of events. The incident – which saw sensitive d… Continue reading RBNZ says partner Accellion kept it in the dark about data breach
In July, 2020, cloud software firm Blackbaud announced that it had been the victim of a ransomware attack that began in February of 2020 and continued until Blackbaud was able to kick the attackers out of their system in May. In order to try to protect… Continue reading The Blackbaud ransomware breach — impact on school clients
Mariam Baksh reports: The U.S. Department of Agriculture has found “no evidence” of a data breach at a payroll processing center but is investigating, a spokesperson said in response to news reports to the contrary. Reuters first reported on Tuesday th… Continue reading USDA Denies Data Breach at Payroll Facility
Sara Merken reports: Goodwin Procter experienced an indirect security breach involving a third-party vendor whose services the firm uses for large file transfers, according to an internal memo reviewed by Reuters on Tuesday. Goodwin’s investigati… Continue reading Goodwin says vendor breach may have exposed client data
Hunton Andrews Kurth writes: On January 27, 2021, the French Data Protection Authority (the “CNIL”) announced (in French) that it imposed a fine of €150,000 on a data controller, and a fine of €75,000 on its data processor, for failure to implement ade… Continue reading FR: CNIL Fines a Data Controller and Its Processor 225,000 Euros for Security Violation in Connection with Credential Stuffing
What’s that feeling when you learn your web hosting vendor for the past 7 years had unpatched vulnerabilities that permitted thousands of individuals’ personal information to be accessed without authorization? Nausea? Disgust? Something e… Continue reading Florida Healthy Kids website breached; vendor blamed for not patching
Law360 is reporting that Rady Children’s Hospital has been sued over the Blackbaud ransomware breach. The complaint alleges violations of California’s Confidentiality of Medical Information Act . The hospital had reported in October that th… Continue reading Rady Children’s Hospital sued over Blackbaud breach
Devin Willems reports: Gainwell Technologies announced that someone may have gained unauthorized access to some participants’ information in Wisconsin’s Medicaid program. According to a release, an unauthorized individual gained access to an account st… Continue reading Wisconsin Medicaid information accessed by unauthorized individual