Twitter confirms January breach, urges pseudonymous accounts to not add email or phone number

Jonathan Greig reports: Twitter officially confirmed that a January breach led to the leak of information connected to 5.4 million accounts. Two weeks ago, a hacker on Breach Forums offered email addresses and phone numbers connected to the accounts, which they said ranged from “celebrities, companies, randoms, OGs, etc.” For those who have pseudonymous Twitter...

Cyberattack on Albanian government suggests new Iranian aggression

Lily Hay Newman of Wired reports: In mid-July, a cyberattack on the Albanian government knocked out state websites and public services for hours. With Russia’s war raging in Ukraine, the Kremlin might seem like the likeliest suspect. But research published on Thursday by the threat intelligence firm Mandiant attributes the attack to Iran. And while Tehran’s...

No Injury = No Article III Standing in Data Breach Class Action

Amy Brown Doolittle of Squire Patton Boggs writes: As we have discussed here at CPW, one of the biggest challenges facing a plaintiff in a data breach class action is to establish an injury from the alleged data breach. Earlier this week, in David De Midicis v. Ally Bank & Ally Fin., Inc., 2022 U.S. Dist....

Update: Investigation reveals thousands had info exposed in Prince Edward Island arts centre ransomware incident

Jack Morse reports: The full impact of a data breach at Prince Edward Island’s largest arts centre is now clear. The results of a recently completed investigation show thousands of people had their personal information exposed. The cyberattack was first reported by the Confederation Centre of the Arts in January. In February, officials confirmed...

Anonymous Source Leaks 4TB of Cellebrite Data After Cyberattack

Waqas reports: Cellebrite is an Israel-based smartphone hacking (or cracking) firm that previously made headlines for unlocking iPhone devices for law enforcement and security agencies in the United States. An anonymous source has leaked around 4TB of proprietary data belonging to Israeli digital intelligence firm, Cellebrite. The affected products are the company’s flagship product,...

DeBridge Team Foils Possible Lazarus Group Cyberattack

Tom Carreras reports: North Korean hacking syndicate Lazarus Group is thought to be behind a failed cyberattack on deBridge Finance yesterday. According to Smirnov, several members of the deBridge team received emails yesterday with PDFs attached to them entitled “New Salary Adjustments.” Downloading the file and submitting password information would have unleashed a...

Alleged Russian Cryptocurrency Money Launderer Extradited to United States

The alleged operator of the illicit cryptocurrency exchange BTC-e was extradited yesterday from Greece to the United States to face charges in the Northern District of California. “After more than five years of litigation, Russian national Alexander Vinnik was extradited to the United States yesterday to be held accountable for operating BTC-e, a criminal...

NHS 111 service vendor hit by cyberattack that sounds like ransomware incident

NHS 111 services have been targeted by cyber hackers leaving staff “working on paper” and patients told to expect delays. The system which allows call handlers to dispatch ambulances, book patients out-of-hours urgent appointments, or fulfil emergency prescriptions has crashed. The firm behind the system, Advanced, confirmed on Friday night it had lost service on...

Bits ‘n Pieces (Trozos y Piezas)

BR- After 4 days offline, Tribunal de Justiça do Distrito Federal e dos Territórios website was back online August 3rd. Samara Schwingel-Isadora Teixera reported (machine-translated): The platform remains unstable due to adjustments that will be made. The Civil Police are investigating the hackers who allegedly took down the site. Read more at Metropoles. DataBreaches...