NetLib Security

"On April 30, 2024, USAA became aware of an unauthorized cybersecurity incident on their network. USAA immediately launched an investigation into the incident. After reviewing the impacted data gathered during the investigation, USAA determined that certain individuals’ sensitive and personal information was accessed."

Federman & Sherwood Investigates USAA for Data Breach Federman & Sherwood Investigates USAA for Data Breach

"A data-collection lawsuit against General Motors Co. may be a harbinger of things to come as connected vehicles meet greater legal scrutiny from regulators, experts told Automotive Dive."

Automakers meet growing data privacy challenges, experts say A Federal Trade Commission crackdown and lawsuit against GM show automakers are navigating legal risks.

"The Dutch Data Protection Authority (DPA) has fined Uber a record €290 million ($324 million) for breaking European Union data protection laws by sending driver data to the US."

Uber Fined €290 Million Over GDPR Violations - Spiceworks The Dutch Data Protection Authority (DPA) has imposed a €290 million fine on Uber for transferring EU data to the US.

Monitoring the Gargantuan NPD Breach - “Local Florida man exposes…billions of Social Security numbers?” Ok, that’s not usually how those headlines go, and in this case it’s a Florida based firm, rather than an individual. National Public Data (NPD), a data broker owned by Jerico Pictures, Inc., provides information for background checks. This past April, a hacking group stole the records of almost 3 billion people..."



https://netlibsecurity.com/blog/monitoring-the-gargantuan-npd-breach/

"Last week’s staggering data breach at National Public Data put personal data, including the Social Security numbers, of billions of Americans in the hands of cybercriminals."

Here’s how to find out if your Social Security number was included in last week’s massive data breach Nearly 3 billion records were impacted.

"Sensitive personal data belonging to every American including their Social Security number, address, date of birth and phone number was stolen online by hackers who have put the information up for sale on the dark web, it was alleged in a lawsuit."

Hackers may have stolen your Social Security number: Here’s how to protect yourself Sensitive personal data belonging to every American including their Social Security number, address, date of birth and phone number was stolen online by hackers.

"In this notice, CSC ServiceWorks explains that the incident resulted in an unauthorized party being able to access consumers’ sensitive information, which includes..."

CSC ServiceWorks Notifies Consumers of Recent Data Breach Affecting Their SSNs | JD Supra On August 9, 2024, CSC ServiceWorks filed a notice of data breach with the Attorney General of Maine after discovering that an unauthorized third...

"Despite a marginal decrease in data breach expenses, the healthcare industry still foots a bill when an incident occurs: an average of $9.8 million per breach."

Data Security Failures: The Cost to Industry Data Security Failures: The Cost to Industry Costs of data breaches across various industries and businesses

"Following a massive AT&T data breach that resulted in the theft of tens of millions of customers’ phone and text messaging history, a U.S. Senator has sent a request for more information about how the breach occurred and when federal agencies learned about the problems, suggesting that cyberattack could represent a threat to national security."

Senator Demands Answers About AT&T Data Breach from Company, Federal Agencies A U.S. Senator is calling for AT&T and more than a dozen federal agencies to provide information on a recent data breach involving tens of millions of phone records and how it could affect national security.

"On August 6, 2024, the Dutch data protection authority (AP) announced that it had received several reports of data breaches owing to the use of artificial intelligence (AI)."

Netherlands: AP announces data breaches from use of AI On August 6, 2024, the Dutch data protection authority (AP) announced that it had received several reports of data breaches owing to the use of artificial intelligence (AI). In particular, the AP highlighted that employees may often use chatbots on their own initiative and against agreements made wi...

"Security leaders are used to thinking about defense-in-depth and ensuring their security stack and overall architecture provide resilience and protection. While this paradigm holds true today, it may be time to think about shifting to data-first security."

Hidden risk of shadow data and shadow AI leads to higher breach costs - IBM Blog Unprotected data and unsanctioned AI may be lurking in the shadows. Examine the impact this has on the cost of a data breach.

"Personal DNA data is some of the most sensitive data humans now possess. It contains a blueprint of who individuals are, from their hair and eye color to clues about diseases that may one day affect their lives. While it is critically important that this information be explored by leading laboratories and researchers, it is just as important that it is kept secure, particularly in an increasingly connected world."

DNA data security requires robust protections, not rhetoric The risks of the BIOSECURE Act's Whac-A-Mole approach affect companies today as well as people who may benefit from the research that will be conducted tomorrow.

"Healthcare facilities house some of the most valuable kinds of datasets. Since data security gaps pose a serious legal, financial, and reputational risk, professionals should work to bridge them as soon as possible."

8 Common Data Security Gaps in Health Care | HackerNoon Health care data security is crucial but can be challenging. Here are the most common data security gaps to address.

Consolidation and Integration of Big Tech - "The real danger lies in the opportunities presented by the chaos for bad actors to exploit. Airlines, banks, health care, public transportation: the outage affected systems in all sectors. Keeping a heightened vigil in this situation can protect their customers’ valuable data."

https://netlibsecurity.com/blog/consolidation-and-integration-of-big-tech/

"A ransomware attack on the Australian electronic prescription service provider MediSecure resulted in the theft of 6.5TB of data, including the sensitive data of up to 12.9 million Australians – around half of Australia’s population. That makes this the largest data breach in the country so far this year and one of the top 5 Australian data breaches of all time."

Ransomware Attack on Australian eScripts Provider Affects 12.9 Million Australians A ransomware attack on the Australian electronic prescription service provider MediSecure resulted in the theft of 6.5TB of data, including the sensitive It has been confirmed that the ransomware attack on the Australian electronic prescription service provider MediSecure most likely affects 12.9 mi...

"On July 19, 2024, Infosys McCamish Systems, LLC (“IMS”) filed a notice of data breach with the Attorney General of California after discovering that a recent cyberattack resulted in an unauthorized party being able to access portions of the company’s computer network."

Customers of PHL Variable Insurance Company Affected by Infosys McCamish Systems Announces Data Breach | JD Supra On July 19, 2024, Infosys McCamish Systems, LLC (“IMS”) filed a notice of data breach with the Attorney General of California after discovering that a...

"Services from airlines to healthcare, shipping and finance were coming back online on Friday after a global digital outage disrupted computer systems for hours, another incident that shows the vulnerability of the world's interconnected technologies."

Global tech outage eases after widespread disruption, new focus seen on risks Services from airlines to healthcare, shipping and finance were coming back online on Friday after a global digital outage disrupted computer systems for hours, another incident that shows the vulnerability of the world's interconnected technologies.

"A Bozeman-based technology company is at the center of a class-action lawsuit, a Congressional investigation and a massive data breach that could affect more than a half billion customers."

Bozeman-based technology company at the center of a massive data breach • Daily Montanan A Bozeman-based company, Snowflake, is at the center of a massive data-breach controversity.

"I swear, sometimes it’s like nobody watched the Terminator or Matrix movies. News has come out that a hacker accessed proprietary information from OpenAI on the development of their products."

How Seriously Do We Take AI Data Security Risks? How Seriously Do We Take AI Data Security Risks? Data security risks for artificial intelligence technology

"Virtually all organizations have an obligation to safeguard their personal data against unauthorized access or use, and, in some instances, to notify affected individuals in the event such access or use occurs."

The Broadening Data Security Mandate: SEC Incident Response Plan and Data Breach Notification Requirements Virtually all organizations have an obligation to safeguard their personal data against unauthorized access or use, and, in some instances, to notify affected individuals in the event such access or use occurs. Those obligations are, in some instances, relatively nebulous, and organizations—for be...

"A data breach at the phone surveillance operation mSpy has exposed millions of its customers who bought access to the phone spyware app over the past decade, as well as the Ukrainian company behind it."

Data breach exposes millions of mSpy spyware customers | TechCrunch A huge batch of mSpy customer service emails dating back to 2014 were stolen in a May data breach.

"In this notice, Prudential explains that the incident resulted in an unauthorized party being able to access sensitive information belonging to over 2.5 million consumers."

Prudential Announces Data Breach Affecting an Estimated 2.5 Million People | JD Supra On June 28, 2024, Prudential Insurance Company of America filed an amended notice of data breach with the Attorney General of Maine after discovering...

"CDK Global, a provider of computer software used by over 15,000 automobile dealerships worldwide, reported a criminal attack on its network. The hacking group, Black Suit, allegedly operating from Eastern Europe with ties to Russia, is demanding tens of millions of dollars in ransom payments."

Elliott Greenblott | Fraud Watch: Recent motor vehicle data breach It’s the time of year when many are considering car or truck purchases. Dealers would most likely wish to reduce current inventory and make space for new model-year vehicles that

"A patient affected by a “data security incident” involving Pennsylvania-based health system Geisinger has filed a class-action lawsuit against the company. Geisinger’s IT vendor, Microsoft-owned Nuance, determined that a former employee may have accessed the personal information of 1 million Geisinger patients, according to a June 24 press release."

Geisinger’s 1 Million Patient Data Breach Leads to Lawsuit A patient affected by a “data security incident” involving health system Geisinger has filed a class-action lawsuit against the company.

Change in the Ransomware Status Quo? - "Their newest threat is the release of 33 terabytes of American citizens’ banking data, acquired in an alleged (by them) data breach of the U.S. Federal Reserve. The question so far, however, is did LockBit actually breach the Fed?"



https://netlibsecurity.com/blog/change-in-the-ransomware-status-quo/

"Slow acceleration after a major ransom hack against a global software company is causing car dealers to idle just before the July 4 holiday sales period."

Lawsuits filed against CDK Global after hack impacting car dealers At least half a dozen lawsuits have now been filed against CDK due to the cyber-attack and data breach of information, according to court documents.

"In this notice, Infosys McCamish explains that the incident resulted in an unauthorized party being able to access consumers’ sensitive information, which includes their names, Social Security numbers, medical records, and financial account information."

Infosys McCamish Systems Data Breach Affects Customers of the Union Labor Life Insurance Company | JD Supra On June 25, 2024, Infosys McCamish Systems, Inc. (“Infosys McCamish”) filed a notice with the Attorney General of Massachusetts after discovering that...

"One of Geisinger's outside contractors had a data breach that left information for more than 1 million patients vulnerable, the health system has announced."

Data breach exposed information of more than 1 million Geisinger patients One of Geisinger's outside contractors had a data breach that left information for more than 1 million patients vulnerable, the health system has announced.